H OTS POT GATEWAY136 System AdministrationEnabling Secure Management {VPN Tunnel}There are many different ways to configure, manage and monitor the performance andup-time of network devices. SNMP, Telnet, HTTP and ICMP are all commonprotocols to accomplish network management objectives. And within those objectivesis the requirement to provide the highest level of security possible.While several network protocols have evolved that offer some level of security anddata encryption, the preferred method for attaining maximum security across allnetwork devices is to establish an IPSec tunnel between the NOC (NetworkOperations Center) and the edge device (early VPN protocols such as PPTP have beenwidely discredited as a secure tunneling method).As part of Nomadix’ commitment to provide outstanding carrier-class networkmanagement capabilities to its family of public access gateways, we offer securemanagement through the NSE’s standards-driven, peer-to-peer IPSec tunneling withstrong data encryption. Establishing the IPSec tunnel not only allows for the securemanagement of the Nomadix gateway using any preferred management protocol, butalso the secure management of third party devices (for example, WLAN AccessPoints and 802.3 switches) on private subnets on the subscriber side of the Nomadixgateway.The advantage of using IPSec is that all types of management traffic are supported,including the following typical examples:z ICMP - PING from NOC to edge devicesz Telnet - Telnet from NOC to edge devicesz Web Management - HTTP access from NOC to edge devicesz SNMPz SNMP GET from NOC to subscriber-side device (for example, AP)z SNMP SET from NOC to subscriber-side device (for example, AP)z SNMP Trap from subscriber-side device (for example, AP) to NOC
