50Initial Setup

Basic VPN Setup

The following settings have been created:

A VPN. The VPN is typically defined for access to an intranet, parts of an intranet or to an extranet.

A virtual SSL server of the portal type. A portal IP address is assigned to it, to which the remote user should connect to access the Portal. If you chose to use the VPN feature without a Nortel Application Switch, the portal server is set to standalone mode.

A test certificate has been installed and mapped to the portal server.

The authentication method is set to Local database and you have one test user configured. The test user belongs to a group called trusted, whose access rules allow access to all networks, services and paths.

One or several domain names are added to the DNS search list, which means that the remote user can enter a short name in the Portal’s various address fields (for example, inside instead of inside.example.com if example.com is added to the search list).

If you chose to enable HTTP to HTTPS redirection, an additional server of the HTTP type was created to redirect requests made with HTTP to HTTPS, because the portal server requires an SSL connection.

Default Network

The wizard also creates a default network definition called intranet. In short, network definitions are used to limit a remote user’s access rights to different networks. Once a network definition has been created it can be referenced in an access rule. The access rule states whether access to the referenced network should be rejected or allowed.

Network definitions can be created, viewed or edited using the /cfg/vpn #/aaa/network command. See the "Groups, Access Rules and Profiles" chapter in the Application Guide for VPN for a full explanation of network definitions in conjunction with access rules.

The intranet network definition is configured as Network 1. The subnets included in intranet are based on private IP address space reservations as defined in the RFC 1918 document:

Network address: 192.168.0.0

Network mask: 255.255.0.0

Network address: 10.0.0.0

Network mask: 255.0.0.0

Network address: 172.16.0.0

Network mask: 255.240.0.0

Nortel VPN Gateway

User Guide

NN46120-104 02.01 Standard

14 April 2008

Copyright © 2007-2008 Nortel Networks

Page 49 Page 51
Page 50
Image 50
Nortel Networks NN46120-104 manual Basic VPN Setup, Default Network
Page 49 Page 51

NN46120-104 specifications

Nortel Networks NN46120-104 is a versatile and efficient telecommunications hardware platform designed to meet the demands of modern networking environments. As a part of Nortel’s extensive portfolio, this device showcases the company’s commitment to innovation and reliability in the telecom sector.

One of the main features of the NN46120-104 is its robust performance capabilities. This platform is capable of handling high traffic volumes, making it suitable for medium to large enterprises. With its advanced routing capabilities and support for various protocols, the device ensures seamless communication across multiple network segments, providing efficient data transfer and connectivity.

The NN46120-104 is built upon the foundation of Nortel's renowned Layer 3 switching technology. This allows it to intelligently direct data packets based on their IP addresses, optimizing both speed and reliability. The inclusion of Virtual LAN (VLAN) support enhances network segmentation, improving security and management while reducing broadcast domains.

In terms of interface options, the NN46120-104 supports an array of Ethernet configurations, including Gigabit and Fast Ethernet ports. This flexibility allows organizations to tailor their networking solutions to their specific needs while enabling easy upgrades as technology evolves. The device also supports Power over Ethernet (PoE), facilitating the deployment of powered devices like IP phones and wireless access points without the need for additional power sources.

Another significant characteristic of the NN46120-104 is its robustness in terms of security features. With support for advanced security protocols and features such as Access Control Lists (ACLs), the device helps safeguard sensitive data by controlling traffic flow and restricting unauthorized access.

Additionally, the NN46120-104 is designed for ease of management. It offers an intuitive interface and supports various management protocols, including Simple Network Management Protocol (SNMP), enabling administrators to monitor and configure the device efficiently.

In summary, the Nortel Networks NN46120-104 combines high performance, extensive connectivity options, advanced security features, and ease of management, making it a formidable choice for enterprises looking to enhance their network infrastructure. Its capabilities align well with the rigorous demands of today’s digital communication landscape, ensuring reliability and efficiency in organizational operations.
Top Page Image Contents