Some users do not wish to have (or deem it a violation of their corporate security policy) to have a VPN tunnel (IPSec data) inside their private network. In these cases, Universal Connection (for PTF ordering, sending PM/400 data, and allowing for IBM® remote support connectivity) can still be established using your connection to the Internet over your LAN. The diagram below shows the environment in which this is possible:
The table below outlines the VPN configuration settings when configuring IBM Universal Connection for Multi-hop on your VPN device.
Note: These configuration settings are those that must be used to configure your VPN device for this Multi-hop scenario for Universal Connection. The configuration settings above are not negotiable in any way.
If these exact configuration settings are not allowed in your environment, use one of the following options for your Universal Connection configuration:
o Direct Connect - VPN tunnel is established from your IBM® iSeries™ family of servers system to the VPN gateway at IBM.
o Dial Up Connection - Uses a modem to dial and connect to IBM (at V5R3 the data is encrypted by VPN).
These are currently the only possible connectivity methods for Universal Connection. Because this multi-hop device is not an iSeries, the specific configuration for that device is not supported by the iSeries Support Center. The above table shows configuration settings for this multi-hop device but not the method used to configure your specific platform.
This is a list of Supported Transforms used by the IPSec protocol also known as VPN
Posts
I am happy to find this post Very useful for me, as it contains lot of information. I Always prefer to read The Quality and glad I found this thing in you post. Thanks
ReplyDeletetop ratings