EasyManua.ls Logo

Digi TransPort WR11 - Page 476

Digi TransPort WR11
948 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuring Virtual Private Networking (VPN) Configure Internet Protocol security (IPsec)
Digi TransPor Routers User Guide
476
Security type Description
Preshared Keys Requires that both IPsec peers share a secret key, or
password, that can be matched by and verified by both
peers.
To configure the PSK, a user will need configuring that
matches the inbound ID of the remote peer and the PSK is
configured using the password parameter. This is done via
Configuration>Security>Users. The User configuration
serves a dual purpose, in that it may contain entries for
normal login access (such as HTTP, FTP or Telnet), and
entries for IPsec tunnels.
XAUTH Init Preshared Keys Used when the remote peer is a Cisco device using XAUTH
and PSK authentication.
RSA Signatures Select this option when the IPsec authentication will use
X.509 certificates.
XAUTH Init RSA Used when the remote peer is a Cisco device using XAUTH
and X.509 certificates for authentication.
Our ID
When Aggressive mode is On, this parameter is a string of up to 20 characters. It is sent to the
remote peer to identify the initiator (such as the router). You can use the variable %s on this
parameter, which causes the router’s serial number to be sent. You can prefix this value with
other text if required. When using certificates, configure this parameter with the Altname field
in a valid certificate held on the router.
Our ID type
Defines how the remote peer is to process the Our ID configuration.
ID type Description
IKE ID The Our ID parameter is a simple key ID (such as vpnclient1).
FQDN The Our ID parameter is a Fully Qualified Domain Name (such as
vpnclient1.anycompany.com)
User FQDN The Our ID parameter is a Fully Qualified Domain Name with a user
element (such as joe.bloggs@anycompany.com)
IPv4 Address An IPv4 Address in dotted decimal notation.
Remote ID
When Aggressive mode is On, this parameter is a string of up to 20 characters that identifies
the remote peer. This setting should use the same text as the Our ID parameter in the remote
peers configuration. When Aggressive mode is Off, this parameter must be the IP address of
the remote peer.

Table of Contents

Other manuals for Digi TransPort WR11

Preview: Installation Guide
Installation Guide17 pages
Preview: Manual
Manual20 pages
Preview: Quick Start Quide
Quick Start Quide2 pages
Preview: Quick Start Guide
Quick Start Guide2 pages

Related product manuals