Enterprise environment – Panasonic 7 User Manual

After the VPN services are provisioned, branch office networks are logically

connected to a central office network or to a NOC network. Branch office end

users can rerun BOQS multiple times to restore the initial VPN configuration or to

fix data errors.

BOQS supports two network topologies:

•

Enterprise topology where the network operations center is located within the

central office.

•

Service Provider topology where the network operations center is an

independent entity from the central office

Enterprise environment

Before you deploy the Nortel VPN Router 1010, 1050, or 1100 switches at the

local sites, you must configure routing and tunnels on the switch at the central

office.

For routing, you must do the following:

•

Enable global RIP service.

•

Enable RIP on private interface.

•

Disallow importing default routes in the group where responder tunnels are
created.

62 Chapter 3 Setting up the Nortel VPN Router 1010, 1050, and 1100

For tunnels, you must do the following:

•

Create one responder tunnel for each branch office Nortel VPN Router 1010/

1050/1100 device.

•

Set the Connection Type to Responder.

•

Be sure that the Control Tunnel option is NOT selected.

•

Determine the connection name for the tunnel. Nortel recommends that the

name be the same as the initiator ID, but it could be the same as the central
office tunnel name.

•

Set the state to Enabled.

•

Set the Local Filter to permit all.

•

Set IPSEC Authentication to Text Pre-Shared Key.

•

Set the Initiator ID to the same name as the central office tunnel name.

NN46110-500