EasyManuals Logo

Motorola RFS Series User Manual

Motorola RFS Series
1054 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #309 background imageLoading...
Page #309 background image
Global Configuration Commands
5-33
In case the client is VPN enabled, it initiates a connection with the VPN server on our
switch, the “conversation” that occurs between the peers consists of device
authentication via Internet Key Exchange (IKE), followed by user authentication using IKE
Extended Authentication (Xauth), push client relate configuration (using Mode
Configuration), and IPsec security association (SA) creation.
Depending on the switch IPSec configuration (as discussed in the previous sections), the
client establishes an IKE SA, and if the switch is configured for Xauth, the client waits for
a "username/password" challenge and then responds to the challenge of the switch.
If the switch indicates that authentication is successful, the client requests further
configuration parameters from the switch. At this stage, the private IP address (mode-
config) is pushed to the client from a private address pool, configured for remote VPN
clients. IPsec SAs are created and the connection is complete.
Once the client has got a virtual IP, further packets from the client within the IPSec tunnel
are routed to the corresponding VLAN interface (in our case vlan3), and the client gets
access to the network. The IPSec tunnel is only between the client and the switch. After
that the packets on the trusted side are sent without encryption.
1. Create and configure a WLAN.
RFSwitch(config)#
RFSwitch(config)#wireless
RFSwitch(config-wireless)#wlan 2 enable
RFSwitch(config-wireless)#wlan 2 ssid MONARCH2
RFSwitch(config-wireless)#wlan 2 vlan 2
2. Create and configure DHCP.
RFSwitch(config)#ip dhcp pool vlan2
RFSwitch(config-dhcp)#address range 10.1.1.2 10.1.1.254
RFSwitch(config-dhcp)#default-router 10.1.1.1
RFSwitch(config-dhcp)#network 10.1.1.0/24
3. Create and configure a VLAN interface named vlan2.
RFSwitch(config)#interface vlan2
RFSwitch(config-if)#ip address 10.1.1.1/24
NOTE: The example below is for a IPSec-L2TP connection over a mobile
unit. Use a windows default client for this configuration.

Table of Contents

Other manuals for Motorola RFS Series

Preview: System Reference Guide
System Reference Guide590 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Motorola RFS Series and is the answer not in the manual?

Motorola RFS Series Specifications

General IconGeneral
BrandMotorola
ModelRFS Series
CategorySwitch
LanguageEnglish

Related product manuals