Nortel Networks BSR222 User Manual

Chapter 5 User Notes

37

Nortel Business Secure Router 222 — Fundamentals

2

Create a tunnel between the sites, as described above.

3

Create an H.323 trunk between the BCM50s, as per the BCM50 User Guide.

Configuring the router to act as a Nortel VPN Server (Client
Termination)

1

Under VPN / Client Termination,

a

Enable Client Termination.

b

Select authentication type and the encryption algorithms supported.

c

If the clients are assigned IP addresses from a pool, define the pool, and
enable it.

2

Assuming a Local User Database is used for authentication,

a

Add user name and password to the local user database as an IPSec user,
and activate it. If the hosts will be assigned a static IP address, enter the
address that will be assigned to the user.

Configuring the router to connect to a Nortel VPN Server (Client
Emulation)

1

Go to VPN / Summary, and select 'Edit'.

2

Select a connection type of Contivity Client, and fill in the web page with the
relevant data.

3

If Group authentication or On-Demand Client Tunnels are needed, click the
'Advanced' button to configure this.

Allowing remote management of a LAN-connected BCM50

1

Create the appropriate NAT server rules to add the BCM50.

Go to SUA/NAT / SUA Server, and create two server rules for HTTPS and
Element Manager access:

One named BCM_HTTPS, with port number 443, and the IP address of the
BCM50

One named BCM_EM, with the port number 5989, and the IP address of the
BCM50