Nortel Networks 608(WL), 620 manual VPN Server

VPN context

Selecting the VPN Server application

Outline of a VPN server configuration procedure

In a VPN client-server scenario, the VPN server is always the responder in the IKE negotiations. Various VPN clients can dial in to a VPN server, since it supports multiple simultaneous VPN connections. A VPN server does not know a priori which remote Security Gateway will attempt to set up a VPN connection. In time, new users may join the VPN. It is an advantage that the SpeedTouch™ VPN server requires no modifications to its configuration when new clients are added to the VPN. The SpeedTouch™ can establish a secure connection with any Remote Gateway that meets the VPN settings, regardless its location in the public network.

The use of the Extended Authentication protocol can optionally be configured. In this case, a list of authorized users is composed and stored in the SpeedTouch™.

In Expert Mode, click VPN > VPN Server. The VPN Server Configuration page appears, which combines all VPN server settings on a single Web page.

Perform the following steps to configure your VPN server:

1In Expert Mode, select the VPN Server Web page from the VPN menu.

2Fill out the various parameter fields in the VPN Server Web page.

3Select the IKE Authentication method. Either Preshared Key or Certificate Authentication can be selected.

4Click Apply to confirm the data and Save All to make the configuration permanent.

5Optional: If you use the Extended Authentication protocol, you have to compose an authorized users list.

The configuration pages you encounter during this procedure are described in detail below.