Virtual Private Network > Overview
Virtual Private Network
RM GUI HiSecOS EAGLE20/30
Release
3.0
09/2015
205
VPN Active Displays whether the VPN tunnel is active/inactive.
The device limits the maximum number of configured VPN tunnels to the
value displayed in "Max. Connections". The device also limits the maximum
number of active VPN tunnels to the value entered in "Max. Active
Connections".
Possible values:
marked
The VPN tunnel is active.
unmarked
The VPN tunnel is inactive.
Used IKE Version Displays the version of the IKE protocol that the VPN tunnel uses.
Possible values:
ikev1
When selected, the device uses the IKE version 1 (ISAKMP) protocol.
ikev2
When selected, the device uses the IKE version 2 protocol.
Startup Displays the starting role for mediating the key exchange for VPN tunnel.
Possible values:
initiator
When specify the device as the initiator for the VPN tunnel, it actively
initiates the Internet Key Exchange (IKE) and parameter negotiation.
responder
If you specify the role of the device as a responder for the VPN tunnel,
then it waits for the initiator to begin a key exchange (IKE) and
connection parameter negotiation.
Operational
Status
Displays the current status of the VPN tunnel.
Possible values:
up
The Internet Key Exchange-Security Association (IKE-SA) and every
Internet Protocol Security-Security Association (IPsec-SA) is up.
down
The IKE-SA and IPsec-SAs are down.
negotiation
If you specify the VPN tunnel for this device as the initiator, then the
value indicates that the key exchange and negotiation algorithm is in
progress. If the VPN tunnel for this device is the responder, then the
value indicates that the VPN tunnel is waiting for the process to begin.
constructing
The IKE-SA is up, but the device detected at least one unestablished
IPsec-SA for this instance.
dormant
The device is waiting for you to complete the configuration before
starting the VPN tunnel setup. For example, the device has an
unsuccessful hostname resolution.
re-keying
The key exchange is in progress. The device displays the value after the
expiration of either the IKE or the IPSEC lifetime timer.
Parameters Meaning
To Next Page
Loading...