146 Chapter 7 Configuring control tunnelsNN46110-50012 Click Create Local Network to go the Profiles > Networks window anddefine a local network. The Local networks are the subnetworks on the privateinternal network of the local VPN Router.If you want to edit an existing localnetwork, select it from the list and the Connection Configuration windowappears. These networks have been previously set up on the Profiles >Networks window.13 To add Remote Networks, click Add button to go to the Add Networkswindow and add the remote networks for the branch office configuration.Remote networks are the subnetworks on the private network of the remoteVPN Router.14 You should verify your branch office connection by sending ping packets tothe management IP address of the local Nortel VPN Router. Or, you canestablish a Web connection to the local Nortel VPN Router and attempt toconfigure it.Creating a user control tunnel from the serial interfaceYou can create a user tunnel using the serial interface. Control tunnels allow themanagement of the Nortel VPN Router without access to anything on the networkother than the management IP address. This is used to force management throughan encrypted tunnel and restricts access to the local resource such as outsourcingmanagement of a Nortel VPN Router. You create the control tunnel user in thegroup /Base/Control Tunnels.1 Open a connection to the serial interface.2 Type 5 to Create a user management tunnel.3 Enter a user name and password.4 When prompted for an IP address, enter an address that would be a static IPaddress for the control tunnel or leave it blank to use the IP Addr Pool. Thiscreates a group called Control and places this user within this group.
