User manual

7-8 LAN-to-LAN Routin

The challenged system then concatenates the challenge value

with the shared secret and passes the new string through a

hashing algorithm. When the hashing algorithm has formed a

response based on this string, the challenged system replies with

a packet containing both the response value and a user name.

The authenticating host looks up the correct password for the

user name received and then performs the same calculations the

client performed, comparing the result to the response value

received. If the results match, the challenged system is allowed

to pass through. However, the authenticating host can issue

additional CHAP challenges at any time during the connection.

Note: Both ends of the connection must be using the same

hashing algorithm for the connection to succeed. The

NETServer uses an algorithm called MD5.

Configuring LAN-to-LAN Routing

This section provides instructions and examples for setting the

required parameters necessary to perform LAN-to-LAN

routing. Since connecting to a remote LAN is really no different

than connecting to a remote user station (with the requirement

that a few more parameters must be defined), remote LANs are

simply defined as users.

Note: For detailed information about CLI command options and

descriptions, refer to the NETServer CLI Reference Guide.

To configure a LAN-to-LAN routing connection:

Step 1 - Add the User

Create a standard network user, specifying the user's password,

and type. Use the following command:

add user

<name>

password

type dialout,network