EasyManuals Logo
Home>Siemens>Network Hardware>RUGGEDCOM ROX II

Siemens RUGGEDCOM ROX II User Manual

Siemens RUGGEDCOM ROX II
798 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #465 background imageLoading...
Page #465 background image
RUGGEDCOM ROX II
CLI User Guide
Chapter 12
Tunneling and VPNs
Configuring the Connection Ends 419
Section12.8.9
Configuring the Connection Ends
Each IPsec tunnel has two ends: the local router and the remote router. These are otherwise referred to as the left
and right connections, respectively. Both ends can have the same configuration or a unique configuration.
To configure a connection end for an IPsec tunnel, do the following:
1. Make sure the CLI is in Configuration mode.
2. Navigate to tunnel» ipsec» connection» {name}» {end}, where {name} is the name of the connection and
{end} is the either the left (local router) or right (remote router) connection end.
3. Configure the public IP address by configuring the following parameters:
IMPORTANT!
Do not use a Virtual IP Address (VRIP) as the connection's public IP address if use-virtual-mac is
enabled under VRRP.
Parameter Description
type { type } Synopsis:  { none, default-route, any, address, hostname }
Default:  none
The public IP address type.
value { value } Synopsis:  A string 1 to 4095 characters long
The public hostname or IP address.
4. Configure the system public key by configuring the following parameters:
Parameter Description
type { type } Synopsis:  { none, rsasig, certificate-any, certificate }
Default:  none
Key type.
rsa-sig { rsa-sig } Synopsis:  A string
The RSA signature key name.
rsa-sig-ipsec Synopsis:  A string 1 to 8192 characters long
The RSA signature in IPsec format.
certificate { certificate } Synopsis:  A string
The selected certificate.
5. Configure the system identifier by configuring the following parameters:
Parameter Description
type { type } Synopsis:  { default, none, from-certificate, address, hostname, der-asn1-dn, user-fqdn }
Default:  default
The system identifier type. The default value is 'left side public-ip' unless overwritten by
the default connection setting.
value { value } Synopsis:  A string 1 to 1024 characters long
The hostname, IP address or the Distinguished Name in the certificate.
6. Configure the next hop to the other system by configuring the following parameters:

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Siemens RUGGEDCOM ROX II and is the answer not in the manual?

Siemens RUGGEDCOM ROX II Specifications

General IconGeneral
BrandSiemens
ModelRUGGEDCOM ROX II
CategoryNetwork Hardware
LanguageEnglish

Related product manuals