VPN IPSec Pass Through

This Motorola Netopia® service supports your independent VPN client software in a transparent manner. Motorola Netopia® has implemented an Application Layer Gateway (ALG) to support multiple PCs running IP Security protocols.

This feature has three elements:

1.On power up or reset, the address mapping function (NAT) of the Gateway’s WAN con- figuration is turned on by default.

2.When you use your third-party VPN application, the Gateway recognizes the traffic from your client and your unit. It allows the packets to pass through the NAT “protection layer” via the encrypted IPSec tunnel.

3.The encrypted IPSec tunnel is established “through” the Gateway.

A typical VPN IPSec Tunnel pass through is diagrammed below:

Motorola Netopia®

Gateway

NOTE:

Typically, no special configuration is necessary to use the IPSec pass through feature.

In the diagram, VPN PC clients are shown behind the Motorola Netopia® Gateway and the secure server is at Corporate Headquarters across the WAN. You cannot have your secure server behind the Motorola Netopia® Gateway.

When multiple PCs are starting IPSec sessions, they must be started one at a time to allow the associations to be created and mapped.

VPN IPSec Tunnel Termination

This Motorola Netopia® service supports termination of VPN IPsec tunnels at the Gateway. This permits tunnelling from the Gateway without the use of third-party VPN client software on your client PCs.

357

Page 357
Image 357
Motorola 7000, 3352N, 3342, 2200 manual VPN IPSec Pass Through, VPN IPSec Tunnel Termination, 357