Table of Contents
Advertisement
Client Routes
NetExtender client routes are used to allow and deny access to various network resources.
Client routes can also be configured at the user and group level. NetExtender client routes are
also configured on the Edit User and Edit Group windows. The segmentation of client routes
is fully customizable, allowing the administrator to specify any possible permutation of user,
group, and global routes (such as only group routes, only user routes, group and global routes,
user, group, and global routes, etc.). This segmentation is controlled by the Add Global
NetExtender Client routes and Add Group NetExtender Client routes check boxes.
NetExtender with External Authentication Methods
Networks that use an external authentication server will not configure local usernames on
the SRA appliance. In such cases, when a user is successfully authenticated, a local user
account is created if the Add Global NetExtender Client routes and Add Group
NetExtender Client routes settings are enabled.
Point to Point Server IP Address
In SRA, the PPP server IP address is 192.0.2.1 for all connecting clients. This IP address is
transparent to both the remote users connecting to the internal network and to the internal
network hosts communicating with remote NetExtender clients. Because the PPP server IP
address is independent from the NetExtender address pool, all IP addresses in the global
NetExtender address pool will be used for NetExtender clients.
Connection Scripts
SRA appliances provide users with the ability to run batch file scripts when NetExtender
connects and disconnects. The scripts can be used to map or disconnect network drives and
printers, launch applications, or open files or Web sites. NetExtender Connection Scripts
can support any valid batch file commands.
Tunnel All Mode
Tunnel All mode routes all traffic to and from the remote user over the SRA NetExtender
tunnel—including traffic destined for the remote user's local network. This is accomplished
by adding the following routes to the remote client's route table:
NetExtender also adds routes for the local networks of all connected Network Connections.
These routes are configured with higher metrics than any existing routes to force traffic
destined for the local network over the SRA tunnel instead. For example, if a remote user is has
the IP address 10.0.67.64 on the 10.0.*.* network, the route 10.0.0.0/255.255.0.0 is added to
route traffic through the SRA tunnel.
Tunnel All mode can be configured at the global, group, and user levels.
42 | SRA 6.0 Administrator's Guide
IP Address
0.0.0.0
0.0.0.0
128.0.0.0
Subnet mask
0.0.0.0
128.0.0.0
128.0.0.0
Hide quick links:
Advertisement
Chapters
Table of Contents
