Appendices : Device Configuration : Two private subnets and user configuration for example 2

Two private subnets and user configuration for example 2
Configuration of the private subnets shown in Figure D.4 is described in the following bulleted list:
A default route is automatically created using a gateway IP 203.1.2.254, which the administrator assigned when configuring the primary Ethernet port.
Private subnets are configured as aliases to priv0 by defining the OnBoard appliance side IP addresses and netmasks shown in Figure D.4 and listed here:
The above values define a range between 197.168.1.0 and 192.168.1.255 = 256 addresses, of which 254 are usable.
The above values define a range between 197.168.4.0 and 192.168.7.255 = 1054 addresses, of which 1022 are usable. This subnet is defined with this address range because device sp3 and sp4 have previously been assigned IP addresses within this range, and the addresses cannot be changed.
Figure D.5 shows the values entered on the Web Manager Network-Private subnet screen to implement the private subnets in this example.
Example 2: Values for Configuring Two Subnets
As shown in the example output from the ifconfig command on the OnBoard appliance below, both private subnet names are assigned as aliases to the priv0 interface and the OnBoard appliance-side IP addresses and subnet masks from Figure D.5 are assigned to the each alias.:
The configuration of the devices shown in Figure D.4 is described in the following bulleted list:
Figure D.6 shows the values specified on the Web Manager Config → Devices: Add new devices dialog to specify the private subnet and the device IP for sp1, sp2, sp3 and sp4.
Example 2: Four Devices Configured on the Config -Devices Screen
The OnBoard appliance administrator must do the following to configure the user to be able to create the VPN tunnel:
Figure D.7 shows the configuration information entered on the Config-Users and groups: Device Access dialog to authorize a user name allSPs for native IP access to all four devices in this example.
Example 2: Configuring a User Account for Native IP Access to All Devices
A VPN connection must exist before a user can access native IP management features on a device. Table D.8 lists examples that show how the VPN connections can be created using IPSec or PPTP. For these examples, the IP address of the user’s workstation is 12.34.56.78.