Allied Telesis AR450S Bedienungsanleitung PDF herunterladen (Seite 19)

Configure Microsoft® Windows XP** Virtual Private Network (VPN) client interoperability with NAT-T support 19

# If the "internet" permit policy is used, then the "isakmp" and "isakmp_float"

permit policies are actually optional.

# ISAKMP Configurations*

create isakmp policy="roaming1" peer=any key=1

set isakmp policy="roaming1" senddeletes=true localid=local natt=on

enable isakmp

# You may find these alias commands (shortcuts) handy if debugging analysis is

needed

add alias=ed string="enable isa debug"

add alias=ed2 string="enable ipsec poli debug=all"

add alias=dd string="dis isa debug"

add alias=dd2 string="dis ipsec poli debug=all"

*# If you are running release 273-02 or later, you will notice that NAT-T is now

off by default (CR6652). YOu will need to turn it on:

set isakmp policy=”roaming1” nattraverasal=on

# The default was changed to support customers with legacy configurations using

the proprietary IPSEC udptunnel mode.

Don’t forget to create and save the config.

create conf=vpn.cfg

set conf=vpn.cfg

This is the end of the configuration

Support Limits

In making design decisions for your IPSec VPN network, please be aware that your actual tunnel

throughput and the number of tunnels you can support is affected by your Internet connection

speed at both the VPN Client and the VPN router, and also by Internet congestion. Available

throughput on any one tunnel is also affected by the current loading on other active VPN tunnels.

Figures on maximum VPN throughput for Allied Telesyn’s range of VPN products are often available

through your Allied Telesyn distributor or reseller.

1 2 ... 14 15 16 17 18 19 20 21 22

Keine Kommentare

Allied Telesis AR450S Bedienungsanleitung Seite 19