Multitech RF830-AP, RF820 VPN IPSec Add IKE Connection Key Life, Number of Retries, Left Next Hop

Page 62

Chapter 5 – Configuration Using Web Management Software

VPN > IPSec > Add IKE Connection

Key Life

The duration for which the IPSec SA should last is from successful negotiation to expiration. The default value is 28800 seconds and the maximum is 86400 seconds.

Number of Retries

Specify the number of retries for the IPSec tunnel. Enter zero for unlimited retries.

Left Next Hop

Next Hop is the address of the next device in a routing table’s path that moves a packet to it’s destination. This setting can be configured or left as a static value: 0.0.0.0. When not configured, the value is set to the Gateway of the Box/Gateway configured on the Interface/Right IP. The selection is based on the Left and Right IP.

Local WAN IP

This is the interface initiating the IPSec tunnel.

Local LAN

Internal subnet of the local security gateway for which the security services should be provided. If the RouteFinder acts as a host, this should be configured as None.

Remote Gateway IP

Interface where the IPSec tunnel ends. In the case of a Road Warrior with a Dynamic IP address, this should be configured to ANY.

FQDN

FQDN is a DNS resolvable fully qualified domain name with which identity the right peer can be identified. When FQDN is selected, the Remote Gateway IP should be blank.

Remote LAN

Internal subnet of the remote security gateway for which the security services should be provided. If the remote end is the host, this should be configured as None.

Failover (Note: Failover is available on the RF830/RF830-AP only.)

Check the box to enable VPN failover for the tunnel. When this field is enabled, the tunnel will failover onto the other interface if the local interface is down. For example, if the tunnel is configured on WAN 1 but the link goes down, the tunnel again comes up on the link that is up (i.e., LAN 2). Failover is possible only when the remote gateway is an FQDN (Fully Qualified Domain Name) and Dynamic DNS Failover is enabled (see the Network > Dynamic DNS screen).

UID (Unique Identifier String)

Check the UID box to enable the Local ID and Remote ID. Local ID and Remote ID are active only when UID is enabled.

Local ID

Enter a string identifier for the local security gateway.

Remote ID

Enter a string identifier for the remote security gateway.

NetBIOS Broadcast

Check this option to enable broadcasts over the connection. It will allow computers on the network to share Microsoft file and printer sharing information.

Multi-Tech Systems, Inc. RouteFinder SOHO RF820/RF820-AP & RF830/RF830-AP User Guide (S000399E)

62

Page 61 Page 63
Image 62
Page 61 Page 63
Contents RouteFinder→ Soho Patents Warranty TrademarksRevision Date Description World HeadquartersContents Key Features Introduction DescriptionFeature Details RouteFinder Ship Kit Contents RouteFinder DocumentationLEDs Telecom Warnings for the ModemRF820/RF820-AP Front Panel RF830/RF830-AP Front Panel DescriptionRF820 RF820-AP RF830 RF830-AP ConnectorBack Panels Typical Applications VPN SpecificationsSpecifications RF820 and RF820-AP RF830 and RF830-AP RF8230AP and RF830AP Specifications for 802.11b/g InterfaceSpecifications RF820 InstallationCabling Your RouteFinder RF820-APRF830 RF830-APSetting up a Workstation and Starting RouteFinder Establish TCP/IP CommunicationTo Set a Fixed IP Address Click the Properties buttonOpen a Web Browser Navigating the Screens Menu Bar Sub Other Options Screen Name Input AreaSub-Menus Network Setup WirelessMenu Bar Table of Menus and Sub-MenusAbout IPSec Configuring RouteFinderStart the RouteFinder Configuration Using the Wizard Setup Screen to Configure Your RouteFinder RouteFinder Initial ConfigurationWizard Setup Screen NotesWAN 1 Static IP Choice ISP SettingsWAN 1 Dhcp Client Choice WAN 1 PPPoE Choice MTU Restart Important Note About Save and RestartSave to Flash Memory Administration System Setup Configuration Using Web Management SoftwareAdministration Administration System SetupEmail Address Auto Reboot TimerConfigure Email Notification Administration Administrative Access Administration Administrative AccessAdministrative Access Screen NoteOld Password, New Password, Confirmation Change PasswordAdministrative Access Http Port Web Interface Inactivity Time OutAdministration System Logs Administration Remote Syslog Administration System LogsAdministration Remote Syslog Remote SyslogAdministration Sntp Client Administration Sntp ClientSntp Configuration General ConfigurationDaylight Saving Start Time Administration Sntp Client Time Zone ConfigurationDaylight Configuration Daylight Saving End TimeAdministration Tools Administration ToolsReset to Factory Defaults Administration Factory DefaultsReset Modem Administration Tools Administration Factory DefaultsNetworks & Services Network Configuration Networks & ServicesNetworks & Services Network Configuration How to Confirm Your Entries RF830/RF830-AP Network Configuration ScreenNetwork Configuration Fields Important Network NotesThis is an example of screen with the TCP protocol selected Networks & Services ServicesNetworks & Services Service Configuration TCP, UDP, and TCP& UDP Service ConfigurationEditing and Deleting User-Added Services AH and ESPNetwork Setup IP Settings Network SetupNetwork Setup IP Settings WAN Choice Static IP WAN Choice Dhcp Client DefaultDefault Gateway WAN 1 & WAN 2 WAN 2 is for the RF830/RF830-AP onlyWAN Choice PPPoE Network Setup Wireless LAN Wlan SettingsWlan Security Network Setup Wireless LAN Wlan SecuritySecurity Selection Disable Select SecurityWPA-PSK/WPA2-PSK Key Network Setup Wireless LAN Wlan Security WEP KeyWEP Key to Index Group Key Rekeying Network Setup Wireless LAN Wlan Client Filter Access Control ListNetwork Setup Advanced IP Settings Network Setup PPP Cellular/Analog Backup Network Setup PPP Cellular/Analog BackupPPP Client for Cellular/Analog Modem Backup Screen Note This screen applies to the RF820/RF820-AP onlySIM Initialization String only for Cellular Modems Signal Strength only for Cellular ModemsModem Initialization Strings PPP Keep-Alive ParametersLoad Balancing Keep Alive URL Configuration Network Setup Load BalancingLoad Balancing Weight Configuration Network Setup Load BalancingDdns Failover for the RF830/RF830-AP only Network Setup Dynamic DNSNetwork Setup Dynamic DNS Check IP Use WildcardCustom DNS Check IP ServerNetwork Setup Static Routes Network Setup IP MasqueradingService Network Setup SnatNetwork Setup Snat Add Dnat Definition Network Setup DnatNetwork Setup Dnat WAN IPPacket Filters Packet Filter Packet Filter RulesTo Host/Networks ServicesFrom Host/Networks ActionPacket Filters Advanced Filters Packet Filters Advanced FiltersIcmp Forwarding Packet Filter IcmpPacket Filter Packet Filter Log Icmp on FirewallVPN IPSec VPN Virtual Private NetworkVPN IPSec Add a New ConnectionAdd an IKE Connection Add IKE ConnectionNumber of Retries NetBIOS BroadcastVPN IPSec Add IKE Connection Key Life Left Next HopVPN IPSec Add Manual Connection Add a Manual ConnectionAdd Manual Connection Fqdn Encryption Strength Pptp SettingsPptp Status Select Remote AddressAuthentication Type Select Radius User AuthenticationAuthentication Type Http Status ProxyProxy Http Proxy Http Allowed NetworksProxy Custom Filters Proxy DNS Proxy Proxy DNS ProxyDNS Proxy LAN StatusDhcp Server Dhcp Server LAN Subnet SettingsDhcp Server LAN Subnet Settings Dhcp Server on LANAdd Fixed Address Dhcp Server Wlan Subnet Settings and Wlan Fixed AddressesAdd Fixed Address Utilities Backup Utilities Firmware Upgrade Utilities BackupUtilities Firmware Upgrade BackupStatistics & Logs System Information Statistics & LogsStatistics & Logs System Information RF820/RF820-AP Screen RF830/RF830-AP ScreenStatistics & Logs Network Interface Details All Access Requests to Firewall Violating Security PolicyLog Access to Administrative Access Port Statistics & Logs Packet Filter LogStatistics & Logs Dhcp Server Live Log Statistics & Logs IPSec Live LogStatistics & Logs Pptp Live Log Statistics & Logs PPP Cellular/Analog Log Statistics & Logs Wlan Client Live LogStatistics & Logs Log Traces Statistics & Logs Log TracesTroubleshooting System Diagnostics as a Troubleshooting ToolProblem #4 Frequently Asked Questions How will I be notified of new router firmware upgrades? How do I access the Router’s setup pages with a Mac?If all else fails in the installation, what can I do? Which modems are compatible with the router?Appendix a Table of Commonly Supported Subnet Addresses Network Number Hosts Available Broadcast Address Antenna Appendix B Antenna for Wireless RouteFinderAntenna Electrical Characteristics MechanicalAppendix C Waste Electrical Electronic Equipment Directive WeeeGlossary AESIKE Isdn TA Ssid PingPptp Tkip WEPWlan Wireless Local Area Network WPA-PSKIndex Data Encryption Standard DES DefinitionNetwork Setup PPP Cellular/Analog Modem Stats & Logs Dhcp Server Live Log
Top Page Image Contents