|
| Prestige 662H/HW Series User’s Guide | |
| Table 150 Menu 27.1.1 IPSec Setup (continued) | ||
|
|
|
|
| FIELD | DESCRIPTION |
|
|
|
|
|
| DNS Server | If there is a private DNS server that services the VPN, type its IP address here. The |
|
|
| Prestige assigns this additional DNS server to the Prestige's DHCP clients that have |
|
|
| IP addresses in this IPSec rule's range of local addresses. |
|
|
| A DNS server allows clients on the VPN to find other computers and servers on the |
|
|
| VPN by their (private) domain names. |
|
| Local | Local IP addresses must be static and correspond to the remote IPSec router’s |
|
|
| configured remote IP addresses. |
|
|
| Two active SAs cannot have the local and remote IP address(es) both the same. Two |
|
|
| active SAs can have the same local or remote IP address, but not both. You can |
|
|
| configure multiple SAs between the same local and remote IP addresses, as long as |
|
|
| only one is active at any time. |
|
| Addr Type | Press [SPACE BAR] to choose SINGLE, RANGE, or SUBNET and press [ENTER]. |
|
|
| Select SINGLE with a single IP address. Select RANGE for a specific range of IP |
|
|
| addresses. Select SUBNET to specify IP addresses on a network by their subnet |
|
|
| mask. |
|
| IP Addr Start | When the Addr Type field is configured to Single, enter a static IP address on the |
|
|
| LAN behind your Prestige. |
|
|
| When the Addr Type field is configured to Range, enter the beginning (static) IP |
|
|
| address, in a range of computers on your LAN behind your Prestige. |
|
|
| When the Addr Type is configured to SUBNET, this is a (static) IP address on the |
|
|
| LAN behind your Prestige. |
|
| End/Subnet | When the Addr Type field is configured to Single, this field is N/A. |
|
| Mask | When the Addr Type field is configured to Range, enter the end (static) IP address, |
|
|
| in a range of computers on the LAN behind your Prestige. |
|
|
| When the Addr Type field is configured to SUBNET, this is a subnet mask on the |
|
|
| LAN behind your Prestige. |
|
| Port Start | 0 is the default and signifies any port. Type a port number from 0 to 65535. You |
|
|
| cannot create a VPN tunnel if you try to connect using a port number that does not |
|
|
| match this port number or range of port numbers. |
|
|
| Some of the most common IP ports are: 21, FTP; 53, DNS; 23, Telnet; 80, HTTP; 25, |
|
|
| SMTP; 110, POP3 |
|
| End | Enter a port number in this field to define a port range. This port number must be |
|
|
| greater than that specified in the previous field. This field is N/A when 0 is configured |
|
|
| in the Port Start field. |
|
| Remote | Remote IP addresses must be static and correspond to the remote IPSec router’s |
|
|
| configured local IP addresses. The remote fields are N/A when the Secure Gateway |
|
|
| Address field is configured to 0.0.0.0. |
|
|
| Two active SAs cannot have the local and remote IP address(es) both the same. Two |
|
|
| active SAs can have the same local or remote IP address, but not both. You can |
|
|
| configure multiple SAs between the same local and remote IP addresses, as long as |
|
|
| only one is active at any time. |
|
| Addr Type | Press [SPACE BAR] to choose SINGLE, RANGE, or SUBNET and press [ENTER]. |
|
|
| Select SINGLE with a single IP address. Use RANGE for a specific range of IP |
|
|
| addresses. Use SUBNET to specify IP addresses on a network by their subnet mask. |
|
Chapter 45 VPN/IPSec Setup | 440 |