friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
8826eae394
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzamu_5.4.0.1/rzamuconfigurevpnsa.htm

101 lines
7.3 KiB
HTML
Raw Normal View History

Add readme and dist folders
2024-04-02 14:02:31 +00:00
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Configure VPN on iSeries A" />
<meta name="DC.Relation" scheme="URI" content="rzamuconfigurevpn.htm" />
<meta name="DC.Relation" scheme="URI" content="rzamucompleteplanning.htm" />
<meta name="DC.Relation" scheme="URI" content="rzamuconfigurevpnsb.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2004, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2004, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzamuconfigurevpnsa" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Configure VPN on iSeries A</title>
</head>
<body id="rzamuconfigurevpnsa"><a name="rzamuconfigurevpnsa"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Configure VPN on iSeries A</h1>
<div><div class="section"><div class="p">After completing your planning for VPN connections, you can now
configure iSeries™ A
to use VPN to secure transmission of data between the two networks. <div class="tip"><span class="tiptitle">Tip:</span> If VPN server is already started when you run
the VPN New Connection wizard, the wizard will not automatically find the
certificate store or any of the certificates you just created. If the VPN
server is running, you must restart it on iSeries Navigator before running the
VPN New Connection wizard.</div>
<div class="important"><span class="importanttitle">Important:</span> IP addresses used
in this scenario are meant for example purposes only. They do not reflect
an IP addressing scheme and should not be used in any actual configuration.
Use your own IP addresses when completing these tasks.</div>
The administrator
for MyCo, Inc used the planning work sheet generated from the VPN planning
advisor to configure a VPN on iSeries A:</div>
</div>
<ol><li class="stepexpand"><span>In iSeries Navigator,
expand <span class="menucascade"><span class="uicontrol">iSeries A</span> &gt; <span class="uicontrol">Network</span> &gt; <span class="uicontrol">IP Policies</span></span>. </span></li>
<li class="stepexpand"><span>Right-click <span class="uicontrol">Virtual Private Networking</span> and
select <span class="uicontrol">New Connection</span> to start the Connection wizard.
Review the Welcome page for information about what objects the wizard creates.
</span></li>
<li class="stepexpand"><span>On the Connection Name page, enter <kbd class="userinput">SalestoCorporate</kbd> in
the <span class="uicontrol">Name</span> field. (Optional) Specify a description for
this connection group. Click <span class="uicontrol">Next</span>. </span></li>
<li class="stepexpand"><span>On the Connection Scenario page, select <span class="uicontrol">Connect your
gateway to another gateway</span>. Click <span class="uicontrol">Next</span>.</span></li>
<li class="stepexpand"><span>On the Internet Key Exchange Policy page, select <span class="uicontrol">Create
a new policy</span> and then select <span class="uicontrol">Highest security, lowest
performance</span>. Click <span class="uicontrol">Next</span>.</span></li>
<li class="stepexpand"><span>On the Certificate for Local Connection Endpoint page, select <span class="uicontrol">Yes</span> and
select <span class="uicontrol">mycocert</span> from the list of certificates. Click <strong>Next</strong>.</span></li>
<li class="stepexpand"><span>On the Local Connection Endpoint Identifier page,
select <span class="uicontrol">Version 4 IP address</span> as the identifier type.
The associated IP address should be 192.168.1.2. This information is defined
in the certificate that you create in DCM. Click <span class="uicontrol">Next</span> twice.</span></li>
<li class="stepexpand"><span>On the Remote Key Server page, select <span class="uicontrol">Version
4 IP address</span> in the <span class="uicontrol">Identifer type</span> field.
Enter <kbd class="userinput">172.16.1.3</kbd> in the <span class="uicontrol">Identifier</span> field.
This is the IP address for iSeries B in the network of the corporate office.
Click <span class="uicontrol">Next</span>.</span> </li>
<li class="stepexpand"><span>On the Local Data Endpoint page, select <span class="uicontrol">IP
version 4 subnet</span> as the identifier type, and enter <kbd class="userinput">10.1.1.0</kbd> for
the identifier, and <kbd class="userinput">255.255.255.0</kbd> as the mask. </span></li>
<li class="stepexpand"><span>On the Remote Data Endpoint page, select <span class="uicontrol">IP version
4 subnet</span> as the identifier type, and enter <kbd class="userinput">10.2.1.0</kbd> for
the identifier, and <kbd class="userinput">255.255.255.0</kbd> as the mask. </span></li>
<li class="stepexpand"><span>On the Data Services page, select <span class="uicontrol">Any port</span> for
the local port, <span class="uicontrol">Any port</span> for the remote port, and <span class="uicontrol">Any
protocol</span> for the protocol. Click <span class="uicontrol">Next</span>.</span></li>
<li class="stepexpand"><span>On the Data Policy page, select <span class="uicontrol">Create a new policy</span>,
and then select <span class="uicontrol">Highest security, lowest performance</span>.
Click <span class="uicontrol">Next</span>.</span></li>
<li class="stepexpand"><span>On the Applicable Interfaces page, select <span class="uicontrol">ETHLINE</span>.
Click <span class="uicontrol">Next</span>.</span></li>
<li class="stepexpand"><span>On the Summary page, review the objects that the wizard will create
to ensure they are correct.</span></li>
<li class="stepexpand"><span>Click <span class="uicontrol">Finish</span> to complete the configuration.
When the <span class="wintitle">Activate Policy Filters</span> dialog box appears,
select <span class="uicontrol">No, packet rules will be activated at a later time</span>,
and then click <span class="uicontrol">OK</span>.</span></li>
</ol>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzamuconfigurevpn.htm">Configure VPN connection between the branch sales office and the corporate office</a></div>
<div class="previouslink"><strong>Previous topic:</strong> <a href="rzamucompleteplanning.htm">Complete planning work sheets for VPN connection from the branch office to remote sales employees</a></div>
<div class="nextlink"><strong>Next topic:</strong> <a href="rzamuconfigurevpnsb.htm">Configure VPN on iSeries B</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue Copy Permalink