7 the default peer concept, Why the default peer concept, The default peer concept – Nortel Networks 608(WL) User Manual

Chapter 6

Advanced Features

E-DOC-CTC-20051017-0169 v0.1

198

6.7 The Default Peer Concept

Why the default peer

concept

Consider the network configuration shown below:

When the SpeedTouch™ [1] gets its IP address dynamically assigned (e.g. during
PPP tunnel setup), a remote IPSec peer cannot know in advance which IP address
will be assigned. Each time the SpeedTouch™ [1] sets up a PPP connection, it will
obtain an IP address from the ISP. In order to cope with this situation, the default
peer concept has been implemented.

The remote IPSec peer address configured on the SpeedTouch™ [2] will allow for
any remote IP address to initiate a secure tunnel.

PPP

Secure tunnel

SpeedTouch620 [1]

SpeedTouch620 [2]

PPP server

Dynamically assigned

IP address

(via PPP protocol)

Configure as default peer

(allows for any IP address)