Chapter 3
Configuration via Local Pages
3.5.9 Networks Page
Networks The Networks page allows you to define Network Descriptors. page layout
What is a Network Descriptor?
How is it used?
The concept of Network Descriptors is introduced for the first time in the SpeedTouch™ R5.3. Not only the classical idea of an IP network or subnet is comprised in this concept, but also the protocol and port number of the messages can be specified, such that access to the VPN can be restricted to certain hosts, protocols and port numbers.
Both the origin and destination traffic policies are expressed by referring to a Network Descriptor. To this end, a symbolic name is attributed to a Network Descriptor.
The definition of relevant Network Descriptors is linked with the topology of the VPN that is constructed with the IPSec configuration. The Network Descriptors determine the type of messages that will trigger the IPSec module.
Network Descriptors can be used to express the origin and destination networks for an IPSec Connection. In case a static IPSec policy is used, the local and remote private networks are described by referring to a Network Descriptor. In this case, relevant Network Descriptors have to be created prior to the definition of a Connection Profile. A Connection Profile refers to a Network Descriptor by its symbolic name.
Network name Internal symbolic name to identify the Network Descriptor.
Type of network and IP address
The Type and IP parameters locate the network in the IP address space. In the IP field, you enter a value corresponding to the network Type.
Type |
| IP | |
|
|
| |
Valid network types are: | Keyword: | Examples: | |
|
|
| |
a single IP address | address | 10.0.0.15 | |
|
|
| |
a single IP subnet | subnet | 10.0.0.0/24 | |
|
|
| |
a contiguous IP address range | range | ||
|
| ||
|
|
|
94 | |
|
