VPN

Remote Next Hop

The IP address of the router/gateway that will forward data packets to the

 

IOLAN (if required). The router/gateway must reside on the same subnet at the

 

remote VPN.

 

Field Format: IPv4 or IPv6 address

Remote

The IP address of a specific host or the network address that the IOLAN will

Host/Network

provide a VPN connection to. If the IPsec tunnel is listening for connections

Address

(Boot Action set to Add), and the field value is left at 0.0.0.0, any VPN peer

 

with a private remote network/host that conforms to RFC 1918 (10.0.0.0/8,

 

172.16.0.0./12, 192.168.0.0/16) will be allowed to use this tunnel if it

 

successfully authenticates.

 

Field Format: IPv4 or IPv6 address

Remote IPv4

The subnet mask of the remote IPv4 network. Keep the default value when you

Subnet Mask

are configuring a host-to-host VPN connection.

 

Default: 255.255.255.255

Remote IPv6 Prefix The prefix bits of the remote IPv6 network. Keep the default value when you

Bits

are configuring a host-to-host VPN connection.

 

Default: 0

Boot Action

Determines the state of the VPN network when the IOLAN is booted.

 

Data Options:

 

z Start—Starts the VPN network, initiating communication to the remote

 

VPN.

 

z Add—Adds the VPN network, but doesn’t initiate a connection to the

 

remote VPN.

 

z Ignore—Maintains the VPN network configuration, but the VPN network

 

is not started and cannot be started through the IPsec command option.

 

When defining peer VPN gateways, one side should be defined as Start

 

(initiate) and the other as Add (listen). It is invalid to define both gateways as

 

Add. VPN connection time can take longer when both gateways are set to

 

Start, as both sides will attempt to initiate the same VPN connection.

 

Default: Start

Shared Secret Field Description

When the Authentication Method is set to Shared Secret, you can enter a secret that applies to all VPN tunnels (both the IPsec and L2TP/IPsec protocols) to successfully authenticate and create a valid connection.

Configure the following parameter:

Secret

When the Authentication Method is set to Shared Secret, enter the

 

case-sensitive secret word.This applies to all VPN tunnels (IPsec and

 

L2TP/IPsec).

 

Field Format: Maximum of 16 characters, spaces not allowed

225

Page 225
Image 225
Perle Systems SCS, STS manual Shared Secret Field Description