ibm-information-center/dist/eclipse/plugins/i5OS.ic.rzaja_5.4.0.1/rzajadynwrksht.htm

153 lines
8.3 KiB
HTML

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE html
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="en-us" xml:lang="en-us">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta name="security" content="public" />
<meta name="Robots" content="index,follow" />
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
<meta name="DC.Type" content="concept" />
<meta name="DC.Title" content="Planning worksheet for dynamic connections" />
<meta name="abstract" content="Complete this worksheet before you configure a dynamic connection." />
<meta name="description" content="Complete this worksheet before you configure a dynamic connection." />
<meta name="DC.Relation" scheme="URI" content="rzajavpnwiz.htm" />
<meta name="copyright" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2000, 2006" />
<meta name="DC.Format" content="XHTML" />
<meta name="DC.Identifier" content="rzajadynwrksht" />
<meta name="DC.Language" content="en-us" />
<!-- All rights reserved. Licensed Materials Property of IBM -->
<!-- US Government Users Restricted Rights -->
<!-- Use, duplication or disclosure restricted by -->
<!-- GSA ADP Schedule Contract with IBM Corp. -->
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
<link rel="stylesheet" type="text/css" href="./ic.css" />
<title>Planning worksheet for dynamic connections</title>
</head>
<body id="rzajadynwrksht"><a name="rzajadynwrksht"><!-- --></a>
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
<h1 class="topictitle1">Planning worksheet for dynamic connections</h1>
<div><p>Complete this worksheet before you configure a dynamic connection.</p>
<p>Before you create your dynamic VPN connections, complete this worksheet.
The worksheet assumes you will use the New Connection Wizard. The wizard allows
you to set up a VPN based on your basic security requirements. In some cases,
you may need to refine the properties that the wizard configures for a connection.
For example, you may decide that you require journaling or that you want the
VPN server to start each time TCP/IP starts. If this is the case, right-click
the dynamic-key group or connection that the wizard created and select <span class="uicontrol">Properties</span>.</p>
<p>Answer each question before you proceed with your VPN setup.</p>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" frame="border" border="1" rules="all"><caption>Table 1. System requirements</caption><thead align="left"><tr><th valign="top" width="80%" id="d0e27">Prerequisite checklist</th>
<th valign="top" width="20%" id="d0e29">Answers</th>
</tr>
</thead>
<tbody><tr><td valign="top" width="80%" headers="d0e27 ">Is your operating system <span class="keyword">OS/400<sup>®</sup></span> V5R2
(5722-SS1) or later?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is the <span class="keyword">Digital Certificate Manager</span> option
(5722-SS1 Option 34) installed?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is <span class="keyword">iSeries™ Access for Windows<sup>®</sup></span> (5722-XE1)
installed?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is <span class="keyword">iSeries Navigator</span> installed?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes</td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is the Network subcomponent of <span class="keyword">iSeries Navigator</span>
installed?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is TCP/IP Connectivity Utilities (5722-TC1) installed?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Did you set the retain server security data (QRETSVRSEC *SEC) system
value to 1?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is TCP/IP configured on your system (including IP interfaces, routes,
local host name, and local domain name)?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Is normal TCP/IP communication established between the required endpoints?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Have you applied the latest program temporary fixes (PTFs)?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">If the VPN tunnel traverses firewalls or routers that use IP packet
filtering, do the firewall or router filter rules support AH and ESP protocols?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Are the firewalls or routers configured to permit IKE (UDP port 500),
AH, and ESP protocols?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
<tr><td valign="top" width="80%" headers="d0e27 ">Are the firewalls configured to enable IP forwarding?</td>
<td valign="top" width="20%" headers="d0e29 ">Yes </td>
</tr>
</tbody>
</table>
</div>
<div class="tablenoborder"><table cellpadding="4" cellspacing="0" summary="" frame="border" border="1" rules="all"><caption>Table 2. VPN configuration</caption><tbody><tr><td valign="top" width="80.3030303030303%"><strong>You need this information to configure a dynamic
VPN connection</strong></td>
<td valign="top" width="19.696969696969695%"><strong>Answers</strong></td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What type of connection are you creating? <ul><li>Gateway-to-gateway</li>
<li>Host-to-gateway</li>
<li>Gateway-to-host</li>
<li>Host-to-host</li>
</ul>
</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What will you name the dynamic-key group?</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What type of security and system performance do you
require to protect your keys? <ul><li>Highest security, lowest performance</li>
<li>Balance security and performance</li>
<li>Lowest security and highest performance</li>
</ul>
</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">Are you using certificates to authenticate the connection?
If no, what is the preshared key?</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What is the identifier of the local key server?</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What is the identifier of the local key server?</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What is the identifier of the remote key server?</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What is the identifier of the remote data endpoint?</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
<tr><td valign="top" width="80.3030303030303%">What type of security and system performance do you
require to protect your data? <ul><li>Highest security, lowest performance</li>
<li>Balance security and performance</li>
<li>Lowest security and highest performance</li>
</ul>
</td>
<td valign="top" width="19.696969696969695%">&nbsp;</td>
</tr>
</tbody>
</table>
</div>
</div>
<div>
<div class="familylinks">
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzajavpnwiz.htm" title="Use the VPN planning worksheets to gather detailed information about your VPN usage plans. You need this information to adequately plan your VPN strategy. You can also use this information to configure your VPN.">Complete the VPN planning worksheets</a></div>
</div>
</div>
</body>
</html>