Step 1 On the Basic Settings tab, provide the following information:
Click Enable to enable the configuration.Enable
Enter a connection name for the VPN tunnel. This description is for reference purposes;
it does not have to match the name used at the other end of the tunnel.
Connection Name
Default – Auto Profile is already chosen.IPSec Profile
Select the interface (WAN1, WAN2, USB1, or USB2) from the drop-down list to use
for this tunnel.
Interface
Select Static IP, or FQDN from the drop-down list.Remote Endpoint
IKE Authentication Method
IKE peers authenticate each other by computing and sending a keyed hash of data that
includes the pre-shared key. If the receiving peer is able to create the same hash
independently using its pre-shared key, it knows that both peers must share the same
secret, thus authenticating the other peer. Pre-shared keys do not scale well because each
IPSec peer must be configured with the pre-shared key of every other peer with which
it establishes a session. Enter the Pre-shared Key, and click Enable to enable the Minimum
Pre-shared Key Complexity.
Pre-shared Key
Check Enable to display the pre-shared key.Show Pre-shared Key
This shows the strength of the preshared key through colored bars.Preshared Key Strength
Meter
Check Enable to enable the minimum preshared key complexity.Minimum Preshared Key
Complexity
The digital certificate is a package that contains information such as a certificate bearer's
identity: name or IP address, the certificate's serial number, the certificate's expiration
date, and a copy of the certificate bearer's public key. The standard digital certificate
format is defined in the X.509 specification. X.509 version 3 defines the data structure
for certificates. Select the certificate from the drop-down list.
Certificate
For Local Group Setup
Select Local WAN IP, Local FQDN, or Local User FQDN from the drop-down list.Local Identifier Type
Enter the identifier name or IP Address based on your selection.Local Identifier
Select IP address or Subnet from the drop-down list.Local IP Type
Enter the IP address of the device that can use this tunnel.IP Address
Enter the subnet mask.Subnet Mask
Remote Group Setup
Select Local WAN IP, Local FQDN, or Local User FQDN from the drop-down list.Remote Identifier Type
Enter the identifier name or IP Address based on your selection.Remote Identifier
Select IP address or Subnet from the drop-down list.Remote IP Type
RV260x Administration Guide
95
VPN
Site-to-Site VPN Connection