![background image](http://html.mh-extra.com/html/cisco/intraport-carrier-8/intraport-carrier-8_administrators-manual_64933028.webp)
Chapter 6 - Functionality and Configuration Overview
23
# tunnel traffic to a PVC.
[ VPN Group "Corporate A-SFrancisco" ]
ipnet = 38.3.3.0/24
bindto = "Wan 0"
maxconnections = 32
transform = ESP(MD5,DES)
localipnet = 38.0.0.200/27
vpngroupdlci = 17
# This is the VPN configuration for the San Francisco office of Corporate A.
# It requires the same features configured as for the Denver office but
# the values will be different since it is has a different geographic
# location.
[ VPN Group "Corporate B" ]
ipnet = 0.0.0.0
bindto = "Wan 0"
maxconnections = 32
transform = ESP(MD5,DES)
localipnet = 38.0.0.132/27
vpngroupdlci = 18
# This is the VPN configuration for Corporate B.
# This is similar to Corporation A’s configuration. The main difference
# is that Corporation B has more IP addresses assigned to its intranet
# and that all packets from Corporate B clients will be tunneled
# to the IntraPort. This is possible by specifying the wild card
# parameter 0.0.0.0 for the ipnet keyword.
Configuration Details
Frame Relay
The PVCs as shown are assumed to be through a Frame Switch, which isn’t shown.
Routing
The default route for the IPC should be pointed to the public Internet to allow VPN packets to
be forwarded. The default route can be learned through either a routing protocol such as RIP or
OSPF or can be configured manually.
Clients
Clients can be anywhere on the NSP’s network or the public Internet. They can be connected to
a LAN or dialed-in to an Internet Access Provider. The client configuration involves speci-
fying the IntraPort Carrier’s IP address in the 'Primary IP Address' field of the Client UI. The
client uses this address to forward VPN packets intended for the corporate intranet that the user
wishes to reach.
The client will only VPN encapsulate and forward packets intended for the corporate intranet
to the IPC. All other IP traffic from the client to other Internet sites will be forwarded without
a VPN wrapper as it normally would. The clients learn about the IP networks from the IPC
when it establishes a connection. These IP networks are specified as part of the IPC configura-
tion.