Patton electronic ONSITE 2800 User Manual
Page 25
Applications overview
25
OnSite 2800 Series User Manual
1 • General information
, the blue pipes represent VPN connections for private traffic within the corporate intranet, while
the green pipes represent the Internet traffic. The red pipe is a Frame Relay PVC transporting Internet traffic
and private corporate traffic over the VPN. Each of the three remote sites is connected with headquarters via an
OnSite VPN router. Each remote site can take advantage of the most convenient and locally available interface
the WAN service can offer, whether X.21, or V.35.
The corporate multi-function application carries two types of traffic between each remote office and corpo-
rate’s central office:
•
Private corporate traffic (the intranet/extranet)
•
Internet traffic
The service provider offers a Frame Relay network for access, so both the private corporate traffic and the Inter-
net traffic is transported over a Frame Relay PVC with one DLCI. The corporate traffic is transported within
IPSec VPN that is in the Frame Relay PVC. The separation of corporation and Internet traffic is managed by
using an ACL using IP addresses as the watershed.
To configure this application, you must configure the following features:
•
A serial Frame Relay link as the WAN service which will carry both private corporate traffic and public
Internet traffic
•
An IPSec VPN for private corporate traffic
•
An ACL to distinguish between the two types of traffic so only the private corporate traffic is carried over
the VPN.
See
on page 44 to configure the serial port,
on page 67 to configure the VPN, and
on page 79 to configure the ACL.
on page 93 provides more in-depth explanations of scheduling
various types of traffic. Various techniques are also described, including QoS and TOS.