Setting Up Virtual Private Networks
Configuring ATMP tunnels
MAX 6000/3000 Network Configuration Guide 11-7
Ascend-Primary-Home-Agent=10.1.2.3,
Ascend-Home-Agent-Password="private"
Understanding the Foreign Agent parameters and attributes
This section provides some background information about configuring a Foreign Agent to
initiate an ATMP request to the Home Agent MAX. For detailed information about each
parameter, see the MAX Reference. For details about attributes and configuring external
authentication, see the TAOS RADIUS Guide and Reference.
Table11-1 lists the RADIUS attributes required when the mobile client and home network are
routing IP, and Table11-2 lists the required attributes when the mobile client and home
network are routing IPX. Descriptions of the attributes follow the tables.
Parameter(s) Usage
ATMP Mode For the Foreign Agent, the mode is Foreign, which makes
the Type, Password, and SAP Reply parameters not
applicable.
UDP Port ATMP uses UDP port 5150 for ATMP messages between
the Foreign Agent and Home Agent. If you specify a
different UDP port number, make sure that the entire ATMP
configuration agrees.
GRE MTU Specifies the Maximum Transmission Unit (MTU) for the
path between the Foreign Agent and Home Agent (as
described in Setting an MTU limit on page 11-3).
ATMP SNMP Traps Specifies that the MAX sends ATMP-related SNMP traps.
IP configuration and Connection
profile parameters The cross-Internet connection to the Home Agent is an IP
routing connection that the MAX authenticates and
establishes in the usual way. (For details, see Chapter 9,
Configuring IP Routing.)
RADIUS authentication
attributes The Foreign Agent must use RADIUS to authenticate
mobile clients, and the RADIUS server must be running a
version of the daemon that includes the ATMP attributes.
(For details, see the TAO RADIUS Guide and Reference.)
RADIUS user-profile attributes The RADIUS user profiles for mobile clients must include
ATMP attributes. The required attributes differ slightly,
depending on whether the mobile client and home network
run IP or IPX and whether the Home Agent MAX operates
in router mode or gateway mode.
Table11-1.Required RADIUS attributes to reach an IP home network
Home Agent in router mode Home Agent in gateway mode
Ascend-Primary-Home-Agent Ascend-Primary-Home-Agent
Ascend-Home-Agent-Password Ascend-Home-Agent-Password