EasyManua.ls Logo

Nomadix Access Gateways - Page 98

Nomadix Access Gateways
330 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
ACCESS GATEWAY
86 System Administration
Next you will define selectors of the Security Policy. All selectors must match for the
policy to be applied.
4. Define the following selectors for the Remote End:
Remote IP/Subnet – Enter the IP address of the remote network secured by the IPSec
tunnel. The address can specify a host.
Subnet MaskEnter the subnet mask of the remote network secured by the IPSec
tunnel.
Remote UDP/TCP Port – Enter the port number; 0 is for all ports (only if protocol is
UDP or TCP).
5. Security Policy can derive the settings for the Local End from the current Network IP
settings of the unit. Select one of the following network options for the
Local End:
Use current Network Interface IP Address – Select this option if you would like to
use the current network interface IP Address. Note that the network IP address is
dynamic if DHCP or PPPoE client is enabled. This setting is the default setting.
Use this static IP address/subnet – If you select this option you must also enter the
Local IP/Subnet, the Subnet Mask, and the IP address of network interface for this
policy.
The Local IP/Subnet is the IP address of the local network secured by the
IPSec tunnel. The address can specify a host.
The Subnet Mask is the subnet mask of the local network secured by the IPSec
tunnel. The address can specify a host.
The IP address of network interface for this policy is the IP Address for the
NSE inside an IPSec tunnel. The IP address must be within the Local LAN
subnet or the same as the Local LAN IP address. IP address 0.0.0.0 disables the
functionality. The default setting is 0.0.0.0.
6. Enter the port number in the Local UDP/TCP Port field; 0 is for all ports (only if protocol
is UDP or TCP).
7. In the Security Parameters section, define the parameters of the security policy. The
options are Discard, Bypass, ESP, and AH. ESP is the default setting.
Discard
Bypass – Select the direction of the discard/bypass; the options are: In only, Out
only
, or In and Out. Out only is the default setting.
ESP – Select all the acceptable encryption algorithms by putting a check in the
checkbox of each option; the options are:
DES, 3DES, and NULL. 3DES is the default
setting. See Setting joint ESP and AH parameters to set parameters that pertain to both
ESP and AH polices.

Table of Contents

Related product manuals