116 The Rekey Time registry entry is at: HKEY_LOCAL_MACHINE\SOFTWARE\DigitalEquipmentCorporation\AltaVista Tunnel\CurrentVersion This entry has a range of 30 to 1,440 minutes 24 hours. The minimum encryption applied to tunnel communication is dynamic, based on the highest level supported by both ends of the tunnel. The tunnel server may be able to support 128-bit encryption while the client may be limited to 40-bit. In this case, the tunnel would have 40-bit encryption applied to it. However, a base minimum can be set on the server via the Windows NT registry. Edit the Minimum Encryption DWORD value to the desired setting located at: HKEY_LOCAL_MACHINE\SOFTWARE\DigitalEquipmentCorporation\AltaVista Tunnel\CurrentVersion Note that connecting PCs may not be able to support whatever minimum setting you apply, thus disabling the tunnel for those PCs.

7.3.7 Configuring Unix-to-Windows NT Tunnel Connections

Tunnel connections between Unix and Windows NT are possible, but only with V.1.0 of the Unix Extranet server software. The Windows NT tunnel server must be the outbound side of the tunnel, meaning that the Windows NT server initiates the connection to the Unix server. Configuration on both ends is the same as on homogenous networks, with only a few exceptions. On the Digital Unix side, be sure to enable IP forwarding in startup files with this set of commands: iprsetup -s rcmgr set ROUTER yes On the Windows NT side, be sure that the tunnel is set as an outbound tunnel.

7.4 Configuring the AltaVista Telecommuter Client

Configuration of the Tunnel client is straightforward for all four platforms Windows 9598NT and MacOS, but make sure you have the following information from the administrator: Username This is the name of the tunnel group on the Tunnel server to which you have access privileges. This name is case-sensitive and must exactly match what the tunnel administrator has set up on the tunnel server. Server key ID The group name for the encryption key.