We offer Corporate Customers the opportunity to receive an individual GPRS access point in order to organize high-security connections for data transmission using GPRS.
Technical requirements
Sending information
The connection between the network and the access point is provided via the internet. Data transmission from the access point to the network takes place using the GRE protocol (IP protocol number 47).
Deciphering
The data transmitted between the network and the access point is encrypted using the IPSec protocol (IP protocol number 50) using the ESP (Encapsulation Security Payload) mode of the protocol. The automatic exchange of IPSec parameters and keys takes place according to the IKE (ISAKMP/OAKLEY) protocol. Initially, only UDP protocol traffic addressed to port 500 and IPSec protocol traffic are allowed between peer encryption devices. When implementing a technical solution, this condition can be changed as needed.
Initial IKE parameters
IKE 1st phase (ISAKMP SA)
LMT pre-generated PRESHARED SECRET;
cypher 3DES CBC;
hash function MD5;
MODP group 2 or 5;
SA lifetime 4 hours.
IKE 2nd phase (IPSec SA)
ESP mode;
cypher 3DES CBC;
hash function MD5;
PFS not allowed;
Aggressive Mode not allowed;
SA lifetime 1 hour.
The above parameters can be changed if such changes are accepted in writing by LMT.
User authentication
Authentication information is transmitted using the RADIUS (RFC 2865) protocol. User authentication can take place at LMT or the Corporate Customer by agreement. The Corporate Customer must provide information about the server's IPv4 address and authorization key.
IP addresses
IPSec gateway and GRE end-point addresses must be public. All other IP addresses (mobile terminals, RADIUS servers) can be both public and private. If the Corporate Customer uses public IP addresses, they must be from the range of public IP addresses owned by the Customer. The Corporate Customer must specify how large the range of IP addresses of mobile devices will be, as well as the distribution of ranges between LMT GPRS routers. Regardless of where user authentication takes place (at LMT or Corporate Customer), the Corporate Customer determines the type of IP addresses (dynamic or static).
Costs
Service connection fee | 213.43 € |
Subscription | 49.80 €/month |
Important
Before using LMT services, please read the data processing information provided by LMT. As a data controller, LMT pays the greatest attention to these issues. As part of the services provided by LMT, we process data only in the necessary amount and period, which results from the nature of the service and the requirements of the binding laws and regulations. As part of the "Private Access Point" service, basic data can be processed, such as connection number, etc., as well as electronic communications metadata, including load data – information related to the provision of electronic communications services. The purpose of the data to be processed is to carry out the execution of the selected service, including ensuring the related quality, payments and solving the reported issues, if they arise, as well as the execution of the binding laws and regulations. The basis of data processing is the requested LMT service and the implementation of related laws and regulations. Such processing is a prerequisite for the execution of the transaction, and failure to provide data may partially or completely delay or terminate the provision of the transaction. With regard to his or her data, the LMT customer has the right to exercise the rights set forth in the laws and regulations. More information about LMT data protection and rights in the field of data processing is available in LMT Privacy Policy.
In order to ensure the best possible customer experience and more complete possibilities of using LMT services, during the use of services LMT can contact you (by phone, by sending a text message, e-mail or a message in the internet browser) about issues of service administration and use.
All charges in €, excl. VAT.