Make BorderManager Play well with 3rd Party VPN Gateways

Novell Cool Solutions: Tip
By Upendra Gopu

Digg This - Slashdot This Posted: 18 Feb 2004

Do you have a problem interoperating Novell BorderManager 3.8 with any of these third-party Servers: Cisco IOS, Cisco PIX, Check Point, Lucent Brick, Netscreen, Linksys, Nortel? Here are some tips.

You should configure the Novell BorderManager 3.8 member configuration using iManager, and then you have to add the third-party server as its member. You can use the Pre-Shared Key and then give the protected network list.

The important point to note here is that during the addition of the traffic rules of the BorderManager, you must make sure that the ENCRYPTION algorithm, AUTHENTICATION algorithm and PFS are perfectly identical (SAME). The PFS parameter will be available in the Member configuration in iManager.

And one more thing is that the rules on NBM 3.8 and the third-party gateway should also match. If you have given protected to protected n/w on the third-party server (ex: Cisco PIX or IOS) you should give the same kind of rule in NBM 3.8 also. If you have given any to any kind of rule in the third-party server (ex: Check Point) you should give the same kind of rule in the NBM 3.8 also. Otherwise you are likely to face problems.

If you have any questions you may contact Upendra at gupendra@novell.com

Reader Comments

• Under Site-to-Site, configure the BorderManager VPN server as Master (uncheck Non-BorderManager VPN), configure the 3rd party VPN server as a slave (check Non-BorderManager VPN). The Tunnel IP addresses are ARBITRARY, and configured ONLY on the BorderManager server, just pink two different IP addresses in the same subnet.

Novell Cool Solutions (corporate web communities) are produced by WebWise Solutions. www.webwiseone.com