The configuration of the AltaVista Tunnel Extranet and Telecommuter servers are fairly generic across platforms. Both servers install identically. Most references in this section apply specifically to the Windows NT configuration. Any quirks in the Unix configuration are noted.

The first step is to decide which physical servers or computers on the local network will be allowed tunnel traffic. Next, create a group of dynamic IP addresses. There should be twice as many IPs as tunnels to connect to the tunnel server. A pair of IP addresses will be assigned to each “end” of the connecting tunnel, one for the server’s interface and one to the end user’s. Note that Windows NT versions of the Extranet/Telecommuter server are capable of connecting only a certain number of tunnels, so be sure to check the number of tunnels needed. Once these items are taken care of, the administrator must decide which tunnel groups are needed. As explained in Chapter 6, the administrator is able to configure the tunnel server for several different groups. Each group would have different users and connection attributes. Users can belong to one or more groups, depending on their needs and duties. For example, the network administration staff should belong to all groups for testing and troubleshooting purposes.