System information

Address Configuration for Connected Devices
400 AlterPath OnBoard Administrator’s Guide
As in the earlier example, the OnBoard administrator must do the following to
enable the IPSec client to access the subnets where the devices reside:
Give the user a copy of the parameters used to configure the IPSec
connection profiles on the OnBoard.
The OnBoard administrator can send a copy of the relevant portions of the
ipsec.conf file after the changes are saved and applied in the Web
Manager for the user to insert into the ipsec.conf file on the users
workstation.
The authorized user must do the following to enable the IPSec client running
on the users workstation to bring up the VPN tunnel to access the subnets
where the devices reside, and then to access the native IP features on the
devices.
Use the same values used by the OnBoard administrator to create an
IPSec VPN connection profile on the user’s workstation.
If the OnBoard administrator sends the relevant portions of the
ipsec.conf file from the OnBoard’s IPSec configuration, use it to
replace the same section in the workstation’s ipsec.conf file.
Bring up the IPSec VPN tunnel. For accessing “sp1,” “sp2,” or “sp3,” the
user can use the connVirt connection profile. For accessing “sp4”, the user
uses the “connSub2” connection profile.
Enabling native IP and accessing the device’s native features is the same as
described under “Enabling Native IP and Accessing a Device’s Native
Features Using Real IP Addresses for Example 2” on page 391.
PPTP VPN Configuration for Example 3
After the private subnets, device, and user account configuration in “Virtual
Network and Device Configuration for Example 3” on page 397 is completed,
a VPN connection profile must be defined to create a VPN tunnel to the
virtual network.
The steps used for enabling a PPTP VPN connection to the virtual network are
the same as in “PPTP VPN Configuration for Example 2” on page 388, except
that, after creating the PPTP VPN tunnel, the user must create the static route
differently to access the virtual network.