MSM7xx Controllers Configuration Guide v6.4.0
• For Use external DHCP server, specify settings that correspond to your external DHCP
server configuration. Set Use port to the controller port that will send out DHCP requests.
3. Select Save.
See the online help for option descriptions.
Securing controller communications to remote VPN servers
To secure the communications between the controller and remote VPN servers, create a VPN tunnel
from the controller to the remote VPN server.
The sample topology seen earlier serves as an example for the sample configurations that follow.
In this example, the controller Internet port has an IP address of 24.1.1.4, the remote VPN server
is at 3.1.1.2, and the secure resource is at 10.0.0.2.
Create a VPN tunnel like this either by configuring an IPSec policy or configuring the PPTP client.
(On the MSM720, replace LAN port with Access network and Internet port with Internet network.)
Internet
Controller
Router
Internet
port
24.1.1.4
LAN
port
7.1.1.1
VPN Server/
Gateway
(Peer)
3.1.1.2
10.0.0.0
10.0.0.2
Secure
resource
7.1.1.2
7.1.1.2
APWireless
Client
7.1.1.3
5.1.1.2
5.1.1.2
APWireless
Client
5.1.1.3
Router
CAUTION: The VPN tunnel should not be used to transport user traffic. The tunnel should only
be used to carry management traffic (RADIUS, SNMP, and management sessions). See “Keeping
user traffic out of the VPN tunnel” (page 514).
Securing controller communications to remote VPN servers 511