friedkiwi/ibm-information-center
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
6290434003
ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaja_5.4.0.1/rzajacompletetheplanningworksheets1a.htm

143 lines
8.1 KiB
HTML
Raw Blame History

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="task" />
<meta name="DC.Title" content="Complete the planning worksheets" />
<meta name="DC.Relation" scheme="URI" content="rzajabpscenario.htm" />
<meta name="DC.Relation" scheme="URI" content="rzajaconfigurevpnoniseriesa2.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzajacompletetheplanningworksheets" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Complete the planning worksheets</title>
</head>
<body id="rzajacompletetheplanningworksheets"><a name="rzajacompletetheplanningworksheets"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Complete the planning worksheets</h1>
<div><div class="section"><p>The following planning checklists illustrate the type of information
you need before you begin configuring the VPN. All answers on the prerequisite
checklist must be YES before you proceed with VPN setup.</p>
<div class="note"><span class="notetitle">Note:</span> These worksheets
apply to iSeries-A, repeat the process for iSeries-C, reversing IP addresses
as necessary.</div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" frame="border" border="1" rules="all"><caption>Table 1. System requirements</caption><thead align="left"><tr><th valign="top" width="80%" id="d0e26">Prerequisite checklist</th>
<th valign="top" width="20%" id="d0e28">Answers</th>
</tr>
</thead>
<tbody><tr><td valign="top" width="80%" headers="d0e26 ">Is your operating system <span class="keyword">OS/400<sup>®</sup></span> V5R2
(5722-SS1) or later?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is the <span class="keyword">Digital Certificate Manager</span> option
(5722-SS1 Option 34) installed?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is<span class="keyword">iSeries™ Access for Windows<sup>®</sup></span> (5722-XE1)
installed?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is <span class="keyword">iSeries Navigator</span> installed?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is the Network subcomponent of <span class="keyword">iSeries Navigator</span> installed?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is TCP/IP Connectivity Utilities (5722-TC1) installed?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Did you set the retain server security data (QRETSVRSEC *SEC) system
value to 1?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is TCP/IP configured on your system (including IP interfaces, routes,
local host name, and local domain name)?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Is normal TCP/IP communication established between the required endpoints?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Have you applied the latest program temporary fixes (PTFs)?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">If the VPN tunnel traverses firewalls or routers that use IP packet
filtering, do the firewall or router filter rules support AH and ESP protocols?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Are the firewalls or routers configured to permit IKE (UDP port 500),
AH, and ESP protocols?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e26 ">Are the firewalls configured to enable IP forwarding?</td>
<td valign="top" width="20%" headers="d0e28 ">Yes</td>
</tr>
</tbody>
</table>
</div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" frame="border" border="1" rules="all"><caption>Table 2. VPN configuration</caption><thead align="left"><tr><th valign="top" width="80%" id="d0e128">You need this information to configure the VPN</th>
<th valign="top" width="20%" id="d0e130">Answers</th>
</tr>
</thead>
<tbody><tr><td valign="top" width="80%" headers="d0e128 ">What type of connection are you creating?</td>
<td valign="top" width="20%" headers="d0e130 ">gateway-to-gateway</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What will you name the dynamic-key group?</td>
<td valign="top" width="20%" headers="d0e130 ">HRgw2FINgw</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What type of security and system performance do you require to protect
your keys?</td>
<td valign="top" width="20%" headers="d0e130 ">balanced</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">Are you using certificates to authenticate the connection? If no, what
is the preshared key?</td>
<td valign="top" width="20%" headers="d0e130 ">No topsecretstuff</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What is the identifier of the local key server?</td>
<td valign="top" width="20%" headers="d0e130 ">IP address: 204.146.18.227</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What is the identifier of the local data endpoint?</td>
<td valign="top" width="20%" headers="d0e130 ">Subnet: 10.6.0.0 Mask: 255.255.0.0</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What is the identifier of the remote key server?</td>
<td valign="top" width="20%" headers="d0e130 ">IP address: 208.222.150.250</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What is the identifier of the remote data endpoint?</td>
<td valign="top" width="20%" headers="d0e130 ">Subnet: 10.196.8.0 Mask: 255.255.255.0</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What ports and protocols do you want to allow to flow through the connection?</td>
<td valign="top" width="20%" headers="d0e130 ">Any</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">What type of security and system performance do you require to protect
your data?</td>
<td valign="top" width="20%" headers="d0e130 ">balanced</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e128 ">To which interfaces does the connection apply?</td>
<td valign="top" width="20%" headers="d0e130 ">TRLINE</td>
</tr>
</tbody>
</table>
</div>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzajabpscenario.htm" title="In this scenario, your company wants to establish a VPN between a client workstation in your manufacturing division and a client workstation in the supply department of your business partner.">Scenario: Basic business to business connection</a></div>
<div class="nextlink"><strong>Next topic:</strong> <a href="rzajaconfigurevpnoniseriesa2.htm">Configure VPN on iSeries-A</a></div>
</div>
</div>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink