Pptp nested tunnels – Panasonic 7 User Manual
Page 123
Attention! The text in this document has been recognized automatically. To view the original document, you can use the "Original mode".
Chapter 6 Configuring branch office tunnels 123
PPTP nested tunnels
Nested tunnels allow you to create a PPTP end user tunnel inside an IPSec branch
office tunnel or an asynchronous branch office tunnel. You can have a nested
tunnel from within the private network or from the public side.
A nested tunnel from within the private network allows an end user to originate a
PPTP connection from a client PC located on the on the private network. When
the client connects, PPTP control packets for establishing the tunnel arrive at the
Nortel VPN Router where it enters the IPsec branch office tunnel. The Nortel
VPN Router at the entry point routes the control packets to the other end of the
branch office connection. The PPTP connection ends at the Nortel VPN Router at
the exit node of the branch office connection on the private interface. The control
packets for the PPTP tunnel are processed and the Nortel VPN Router at the exit
node of the branch office creates a new PPTP tunnel inside the branch office
tunnel.
Even though the nested PPTP tunnel sessions are similar to a regular end user
tunnels at the terminating Nortel VPN Router switch, they are listed separately
under the branch office as nested tunnels on the status page. This indicates that the
nested tunnel cannot stay active after the branch office connection is terminated.
The nested PPTP tunnel is created assuming the branch office connection as
virtual link. In cases where the branch office session is deleted or logged off, the
nested PPTP sessions will be applied the same processing as loss of physical link.
Nested tunnels from the public side allow remote users to connect from the
Internet to a private network through the IPSec client to the Nortel VPN Router.
After connecting the IPSec client, the end user can start a nested PPTP tunnel to
the other end of the established branch office.
You can individually log off nested tunnel sessions from the Status > Sessions >
Active Session window.
Nortel VPN Router Configuration — Basic Features