Setting Up Virtual Private Networks
Configuring ATMP tunnels
MAX 6000/3000 Network Configuration Guide 11-13
Routing to the mobile client
When the Home Agent receives IP packets through the ATMP tunnel, it adds a host route for
the mobile client to its IP routing table. It then handles routing in the usual way. When the
Home Agent receives IPX packets through the tunnel, it adds a route to the mobile client on the
basis of the virtual IPX network number assigned in the RADIUS user profile.
For IP routes, you can enable RIP on the Home Agents Ethernet to enable other hosts and
networks to route to the mobile client. Enabling RIP is particularly useful if the home network
is one or more hops away from the Home Agents Ethernet. If you turn RIP off, other routers
require static routes that specify the Home Agent as the route to the mobile client.
Note: If the Home Agents Ethernet is the home network (a direct connection), you should
turn on proxy ARP in the Home Agent so that local hosts can use ARP to find the mobile
client.
For details on IP routes, see Chapter 9, Configuring IP Routing. For information about IPX
routes, see Chapter 12, Configuring IPX Routing.
Example of configuring a Home Agent in router mode (IP)
To configure the Home Agent in router mode to reach an IP home network:
1Open Ethernet > Mod Config > Ether Options and verify that the LAN interface has an IP
address. You can also set routing options. For example:
Ethernet
Mod Config
Ether options...
IP Adrs=10.1.2.3/24
RIP=On
2Open the ATMP Options subprofile, set ATMP Mode to Home, and set Type to Router.
SAP Reply Enables a Home Agent to reply to the mobile cl ients IPX Nearest
Server Query if it knows about a server on the home network. If the
parameter is set to No, the Home Agent simply tunnels the mobile
clients request to the home network.
UDP Port ATMP uses UDP port 5150 for ATMP messages between the Foreign
Agent and Home Agent. If you specify a different UDP port number,
make sure that the entire ATMP configuration agrees.
GRE MTU Specifies the Maximum Transmission Unit (MTU) for the path
between the Foreign Agent and Home Agent as described in Setting
an MTU limit on page 11-3.
Force fragmentation Enables/disables prefragmentation of packets that have the DF bit set
(as described in Forcing fragmentation for interoperation with
outdated clients on page 11-4).
Idle limit Specifies the number of minutes the Home Agent maintains an idle
tunnel before disconnecting it.
IP configuration and
Connection profile
parameters
The cross-Internet connection to the Foreign Agent is an IP routing
connection that the MAX authenticates and establishes in the usual
way. (For details, see Chapter 9, Configuring IP Routing.)
Parameter Usage