Compatible Systems INTRAPORT 2+ User Manual

Chapter 6 - Basic Configuration Guide

33

same network as Ethernet 0 or a subinterface thereof).
Also, they cannot conflict with those used for any other
VPN Groups.

v Note: For large numbers of users (i.e., over 50), it’s
recommended that the block of addresses be specified as a Local IP
Net because address administration is easier. Using a Start IP
Address is recommended for smaller numbers of users because the
routing setup is simpler. See the

CompatiView Management

Software Reference Guide for more information on the difference
between the Start IP Address and the Local IP Net.

•

Click the Add... button in the Allow Connections to area.

An Add IP Address pop-up box will appear. THIS IS A
VERY IMPORTANT FIELD. The values you enter here
determine what TCP/IP traffic is tunneled, or, more com-
monly, where a client who belongs to this VPN Group
Configuration can go on your network. If you enter the
internal network (in the dual Ethernet example,
192.168.233.0/24), all traffic from a client going to the
internal network will be tunneled through the IntraPort
2/2+.

This is the most common configuration.

As a special case, the entry 0.0.0.0/0 will send all IP traffic

through the tunnel, although the Exclude Local LAN from
Tunnel checkbox on the

General

tab can still be used to

exclude LAN traffic if desired.

There can be multiple entries, including individual

addresses (i.e. hosts).

G.

If you will not be tunneling IPX traffic, you are done with the
VPN Group configuration. Click OK and skip to the VPN
User Configuration section.