Site-to-site tunnels – Enterasys Networks Network Card User Manual

34

RiverMaster Administrator’s Guide

Before You Begin

Chapter 3

Configuring an ANG-3000/7000

NOTE

Aurorean’s NAT Server implementation cannot be employed as a client

NAT where, for example, it operates within a cable modem/ISP topology.

Aurorean’s NAT Server implementation is server-centric.

Site-to-Site Tunnels

Aurorean site-to-site tunnels optimize service between remote offices and
their remotely linked corporate LANs. This configuration is similar to a
remote access Aurorean connection in the sense that both configurations
originate tunnels from an ANG and terminate the tunnel at a remote site. The
site-to-site tunnel configuration differs from the typical ANG model in the
sense that the remote server and tunnel must be configured with several
network values which identify the remote server to the local ANG. Figure 16
displays two site-to-site configurations of Regional Offices A and B connected
to a local ANG and both remote offices connected together, as well as a
remote access connection into Corporate Headquarters.

Figure 16 Site-to-Site Configuration

Aurorean Client

Server #1

Server #2

INTERNET

Network

Firewall

Gateway

PC

PC

Regional Office B

Corporate

PC

PC

Regional Office A

Aurorean Client

Remote access tunnel

Site-to-Site tunnel

Aurorean

Aurorean

Network

Gateway

Aurorean

Policy

Server

Aurorean

Network

Gateway

Headquarters