VPN - Vanguard Networks

More documents

Recommendations

Info

VPN Applications Tunnel Level Backup Figure 1-5 shows an example of three sites connected to the Internet. Traffic between all sites is tunneled. R1 has two connections to the Internet via ISP1 and ISP2. Here is the sequence of events: • A tunnel is configured between R1 and R2 via ISP1. • A tunnel is configured between R1 and R3 via ISP2. • A backup tunnel (through static routes with a higher metric) is configured between R1 and R2 via ISP2. • A backup tunnel (through static routes with a higher metric) is configured between R1 and R3 via ISP1. • When the connection to ISP1 fails, traffic from R1 to R2 is sent over ISP2. • When the connection to ISP2 fails, traffic from R1 to R3 is sent over ISP1. Site A Site B R1 ISP2 ISP1 Internet R2 Site C R3 Figure 1-5. Tunnel Level Backup 1-6 Virtual Private Network
VPN Applications Tunnel Support for Bridge Traffic Figure 1-6 shows how to connect two half bridges using a tunnel. Bridge packets are transported from one LAN to the other through tunneling. The type of LANs used at the remote ends can be the same or different. The overall configuration guidelines of tunnel support for bridge traffic are: • Configure each tunnel with a unique Bridge Link Number. The Bridge Link can be Transparent, Source Routing or Translational Bridge Traffic. • All bridge packets intended for the remote side bridge, passing through the tunnel are encapsulated with encrypted GRE and IP headers, and then sent over the tunnel. • On the remote side tunnel, the IP and GRE Headers are removed after decryption and the original bridge packet is forwarded to the appropriate host. • Source Routing Bridge, Transparent Bridge, and Translational Bridge traffics can be tunneled. • For SR Bridge Traffic over a LAN Tunnel, the “Link Mode” must be configured as RFC1294 in the Bridge Link Configuration, corresponding to the Tunnel. Note For more information on configuring your Vanguard device for tunneling, refer to the “Tunnel Configuration” section in Chapter 2. Ethernet LAN Ethernet LAN Router acting as a transparent bridge Router acting as a transparent bridge 215.0.1.2 R1 Internet R2 215.0.1.5 215.0.1.3 215.0.1.6 215.0.1.4 Tunnel 215.0.1.7 Figure 1-6. Bridged Packets Transported Using a Tunnel For more information on configuring a bridge for your Vanguard device, refer to the Bridging Manual (Part number T0100-02). Virtual Private Network 1-7 T0103-10, Revision L Release 7.3
Page 1 and 2: Vanguard Applications Ware Multi-Se
Page 3: Notice (continued) Proprietary Mate
Page 6 and 7: VPN Technical Glossary
Page 8 and 9: What is a VPN What is a VPN Introdu
Page 10 and 11: VPN Applications Transporting IPX o
Page 14 and 15: VPN Applications RTP/UDP/IP compres
Page 16 and 17: In addition, you can establish mult
Page 18 and 19: Vanguard VPN Tunneling Vanguard VPN
Page 20 and 21: Vanguard VPN Tunneling Outbound Pro
Page 22 and 23: Vanguard VPN Tunneling Dynamic Tunn
Page 24 and 25: Vanguard VPN Tunneling Supported Pl
Page 26 and 27: Vanguard VPN Tunneling Remote Node
Page 28 and 29: po wer RemoteVU Guardian hard drive
Page 30 and 31: Vanguard VPN Tunneling Dynamic Tunn
Page 32 and 33: Vanguard VPN Tunneling Statistics o
Page 34 and 35: Generic Routing Encapsulation (GRE)
Page 36 and 37: Generic Routing Encapsulation (GRE)
Page 38 and 39: Tunnel Configuration Tunnel Configu
Page 40 and 41: Tunnel Configuration GRE Configurat
Page 42 and 43: Tunnel Configuration Tunnel Destina
Page 44 and 45: Tunnel Configuration NHRP Network I
Page 46 and 47: Tunnel Configuration Configuration
Page 48 and 49: Tunnel Configuration Configure Encr
Page 50 and 51: Tunnel Configuration Two remote IPX
Page 52 and 53: Tunnel Configuration Tunnel Support
Page 54 and 55: Tunnel Boot Boot Tunnel Menu To boo
Page 56 and 57: Statistics General Tunnel Statistic
Page 58 and 59: Statistics NHRP Mapping Statistics
Page 61 and 62: Chapter 3 IP Security Overview Intr
Page 63 and 64:
Vanguard IP Security Vanguard IP Se
Page 65 and 66:
Vanguard IP Security Site-to-Site I
Page 67 and 68:
IPSec Configuration IPSec Profile T
Page 69 and 70:
IPSec Configuration Node: Address:
Page 71 and 72:
IPSec Configuration ISAKMP SA Lifet
Page 73 and 74:
IPSec Configuration ESP Encryption
Page 75 and 76:
IPSec Configuration Perfect Forward
Page 77 and 78:
IPSec Configuration IPSec Configura
Page 79 and 80:
IPSec Configuration GRE_IPSec Examp
Page 81 and 82:
IPSec Configuration ISAKMP Aggressi
Page 83 and 84:
IPSec Configuration ISAKMP Aggressi
Page 85 and 86:
Statistics Statistics Introduction
Page 87 and 88:
Statistics Term ISAKMP SA Lifetime
Page 89 and 90:
Statistics Possible Channel State S
Page 91 and 92:
Statistics SNMP IPSec Statistics In
Page 93 and 94:
Chapter 4 Digital Certificates and
Page 95 and 96:
X.509 Digital Certificate Version S
Page 97 and 98:
Simple Certificate Enrollment Progr
Page 99 and 100:
Detailed Functional Description Det
Page 101 and 102:
Detailed Functional Description Cer
Page 103 and 104:
Configuration Configuration CA Conf
Page 105 and 106:
Configuration Polling Limit Range:
Page 107 and 108:
Configuration Node: Nodename Addres
Page 109 and 110:
Configuration Key Size Field Name C
Page 111 and 112:
Configuration Certificate Managemen
Page 113 and 114:
Configuration CA Configuration CA C
Page 115 and 116:
Configuration IPSec Configuration I
Page 117 and 118:
VPN Technical Glossary List of Acro
Page 119 and 120:
Index A Address on the Statistics S
show all

VPN - Vanguard Networks

Create successful ePaper yourself

Delete template?

Save as template?