Digi TransPort WR31 - Page 409

Digi TransPort WR31

866 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Configure Virtual Private Networking (VPN) IPsec parameters

Digi TransPort WR Routers User Guide 409

Use the following security on this tunnel

The security identities on the IPsec tunnel.

Our ID

When Aggressive mode is On, this parameter is a string of up to 20 characters. It is sent to the

remote peer to identify the initiator (such as the router). You can use the variable %s on this

parameter, which causes the router’s serial number to be sent. You can prefix this value with

other text if required. When using certificates, configure this parameter with the Altname field in

a valid certificate held on the router.

Our ID type

Defines how the remote peer is to process the Our ID configuration.

Remote ID

When Aggressive mode is On, this parameter is a string of up to 20 characters that identifies the

remote peer. This setting should use the same text as the Our ID parameter in the remote peer’s

configuration. When Aggressive mode is Off, this parameter must be the IP address of the

remote peer.

Security type Description

Preshared Keys Requires that both IPsec peers share a secret key, or password, that can be

matched by and verified by both peers.

To configure the PSK, a user will need configuring that matches the inbound

ID of the remote peer and the PSK is configured using the password

parameter. This is done via Configuration > Security > Users. The User

configuration serves a dual purpose, in that it may contain entries for normal

login access (such as HTTP, FTP or Telnet), and entries for IPsec tunnels.

XAUTH Init Preshared Keys Used when the remote peer is a Cisco device using XAUTH and PSK

authentication.

RSA Signatures Select this option when the IPsec authentication will use X.509 certificates.

XAUTH Init RSA Used when the remote peer is a Cisco device using XAUTH and X.509

certificates for authentication.

ID type Description

IKE ID The Our ID parameter is a simple key ID (such as vpnclient1).

FQDN The Our ID parameter is a Fully Qualified Domain Name (such as

vpnclient1.anycompany.com)

User FQDN The Our ID parameter is a Fully Qualified Domain Name with a user

element (such as joe.bloggs@anycompany.com)

IPv4 Address An IPv4 Address in dotted decimal notation.

Table of Contents

Other manuals for Digi TransPort WR31

Quick Start Guide2 pages

Related product manuals

Preview: Digi TransPort WR11

Digi TransPort WR11

Preview: Digi TransPort WR21

Digi TransPort WR21

Preview: Digi TransPort WR44

Digi TransPort WR44

Preview: Digi TransPort WR41

Digi TransPort WR41

Preview: Digi TransPort

Preview: Digi TransPort LR54

Digi TransPort LR54

Preview: Digi IX14

Preview: Digi IX30

Digi Connect WAN

Preview: Digi Connect Series

Digi Connect Series

Preview: Digi AnywhereUSB Series

Digi AnywhereUSB Series

Digi ConnectPort X2e ZB