Quick Reference
Nortel Contivity Extranet Switch
Version 1.0
Certicom Corp®, Certicom logos, movian™, movianVPN™ are trademarks of Certicom Corp.
All other trademarks used are the property of their respective owners
Nortel Contivity Extranet
Switch Configuration
Quick Reference
This datasheet lists the parameters of the Contivity Extranet Switch (CES) you must
configure for interoperability with movianVPN, and (where applicable) suggested
settings.
Adding Groups
To add groups to the CES, select Profiles>Groups from the main menu then click
Add.
Parameter
Default Value
None
New Value
Group Name
Access Hours
Number of Logins
Name of new user group
Select a range of hours
Anytime
1
Number of logins. If users have static IP
addresses, they are allowed only one retry
Maximum Password Age
0
3
Any number from 0 to 180
Minimum Password Length
From three to 16 alphanumeric characters
Use the default, or select Enabled
Use the default, or select Enabled
Allow Alphabetic Passwords Only Disabled
Static Addresses
Idle Timeout
Enabled
23:59:59
Amount of time the connection can be
idle
Forced Logoff
Filters
00:00:00
Time after which the VPN logs off the
user
Permit All
Select a filter
Certicom Corp.
movianVPN Quick Reference for Nortel Contivity Extranet Switch - 3
Nortel Contivity Extranet Switch Configuration Quick Reference
Adding Users
To add users to the CES, select Profiles>Users from the main menu then click Add.
Parameter
Default Value
None
New Value
Name
The first and last names of the new user
A static IP address for the user (if needed)
The subnet mask for movianVPN
The user’s unique ID
Static IP Address
Subnet Mask
User ID
0.0.0.0
0.0.0.0
None
Password
None
The user’s password
Configuring Policies
To configure client policies, select Profiles>Client Policy from the main menu then
click Create.
Parameter
Protocol
Default Value
None
New Value
UDP or TCP
Port
None
Port number clients use to access the VPN
Application Type
None
Client
Configuring IPSec
To configure IPSec, select Profiles>Groups from the main menu. Click the name of
the group for which you want to enable IPSec, then click Configure.
Parameter
Default Value
None
New Value
Encryption
• ESP-TripleDES with MD5 Integrity
• ESP-56-bit DES with MD5 Integrity
• ESP-40-bit DES with MD5 Integrity
For instructions on how to apply the IPSec settings to users, see page 28 of the Server
Configuration Guide.
4 - movianVPN Quick Reference for Nortel Contivity Extranet Switch
Certicom Corp.
Configuring the IP Address Pool
Configuring the IP Address Pool
To configure client the IP address pool, select Servers>User IP Address from the
main menu, click Address Pool, then click Add.
Parameter
Start
Default Value
None
New Value
The first address in the range of IP
addresses (in 24-hour format)
End
None
The last address in the range of IP
addresses (in 24-hour format)
Disabling Perfect Forward Secrecy
To disable Perfect Forward Secrecy (PFS), select Profiles>Groups from the main
menu.
Parameter
Default Value
Enabled
New Value
Perfect Forward Secrecy
Enable the pulldown menu, then select
disable PFS
Certicom Corp.
movianVPN Quick Reference for Nortel Contivity Extranet Switch - 5
Nortel Contivity Extranet Switch Configuration Quick Reference
6 - movianVPN Quick Reference for Nortel Contivity Extranet Switch
Certicom Corp.
|