Manualshelf

Hardware manual

ManualsBrandsApple ManualsComputer equipmentMac OS X Server Collaboration Services
41424344454647484950
46 Chapter 2 Inside Mac OS X Server
VPN
You can set up a VPN using Mac OS X Server.
VPN is a network transmission protocol that uses encryption and other technologies to
provide secure communications over a public network. Typically the public network is
the Internet, but VPNs are also used to support connections between multiple intranets
within the same organization and to join networks between two organizations to form
an extranet.
Site-to-site VPN connects two networks. It offers a secure connection that’s easy to
establish when the need arises to set up a network at another site, as when a business
expands. Site-to-site VPN makes both networks appear as one to users working at
either site.
VPNs transmit encrypted IP packets so that only legitimate targets can interpret them,
protecting the contents of messages from network sniffing. Mac OS X Server lets you
set up and manage VPN policies that support different authentication and
authorization options and network connection attributes.
Mac OS X Servers VPN service serves Mac OS X, Windows, and UNIX clients, and
supports strong authentication using MS-CHAP, IPSec, and Kerberos v5.
Gateway Setup Assistant
Gateway Setup Assistant automates the configuration of a simple gateway between
the local network and the Internet. A gateway lets you share your servers Internet
connection among computers on your local area network (LAN).
Gateway Setup Assistant automatically configures DHCP, NAT, firewall, DNS, and VPN as
well as the servers network configuration. For example:
 Certain 192.168.x.x addresses are set aside for DHCP and VPN.
 A DHCP server is enabled and configured to provide addresses to computers on the
LAN.
 NAT and firewall services are enabled so that all packets from the Internet except
those required for connections with the server are blocked.
 A DNS server is configured as a caching server.
 A VPN server is optionally enabled for L2TP.
If you want to adjust the automatic settings after running Gateway Setup Assistant, you
can do so using the Server Admin application.
“Setup Example” on page 65 describes how to use Gateway Setup Assistant in a small
business.