Internet – Enterasys Networks Network Card User Manual

36

RiverMaster Administrator’s Guide

Before You Begin

Chapter 3

Configuring an ANG-3000/7000

Figure 17 Auto Link Recovery Architecture

If the primary Aurorean Virtual Network system fails or is unreachable due to
Internet congestion, corporate ISP outage, or router malfunction, the
secondary Aurorean Virtual Network system provides continued VPN
service to remote users and branch offices.

From the standpoint of network topology, both Aurorean Virtual Network
systems share the same Management domain name although they are
physically discrete. Also, a RiverMaster management application serving
each Aurorean Virtual Network system is accessible at and operates from a
single Windows NT/2000 computer. The Aurorean Virtual Network system
pairs can handle authentication through a shared database if an external
service such as RADIUS or SecurID is used. ALR also supports Enterasys
authentication via the APS database although this requires that user
information be manually replicated in each Aurorean Virtual Network
system. For more detailed information, refer to the AutoLink Recovery
Application Note.

Primary & Secondary

External

Authorization

Server

Trusted network

Primary RM session

Secondary RM session

INTERNET

RiverMaster

Primary

Aurorean

System

Secondary

Aurorean

System

Aurorean Client

Aurorean

Network Gateway

Aurorean

Policy

Server

Aurorean

Policy

Server

Aurorean

Network Gateway