VPN Configuration
19.2 Configuring a Tunnel from an AP to a Mobility Controller
SCALANCE W1750D UI
Configuration Manual, 02/2018, C79000-G8976-C451-02
305
Configuring a Tunnel from an AP to a Mobility Controller
19.2.1
Configuring an IPsec Tunnel
An IPsec tunnel is configured to ensure that the data flow between the networks is
encrypted. When configured, the IPsec tunnel to the controller secures corporate data.
You can configure an IPsec tunnel from the VC using the SCALANCE W UI or the CLI.
To configure a tunnel for IPsec protocol:
1. Click the
link in the SCALANCE W UI. The
window is displayed.
2. Select
from the
drop-down list.
3. Enter the IP address or fully qualified domain name (FQDN) for the primary VPN/IPsec
endpoint in the
text box.
4. Enter the IP address or FQDN for the backup VPN/IPsec endpoint in the
text
box. This entry is optional. When you specify the primary and backup host details, the
other details are displayed.
5. Specify the following parameters. A sample configuration is shown in Figure
IPsec
Configuration
.
–
To allow the VPN tunnel to switch back to the primary host when it becomes available
again, select
from the
drop-down list. This step is optional.
–
If
is enabled, specify a value in seconds for
. When preemption
is enabled and the primary host comes up, the VPN tunnel switches back to the
primary host after the specified hold- time.
The default value for
is 600
seconds.
– To allow the AP to create a backup VPN tunnel to the controller along with the primary
tunnel, and maintain both the primary and backup tunnels separately, select
from the
drop- down list. When fast failover is enabled and if the primary
tunnel fails, the AP can switch the data stream to the backup tunnel. This reduces the
total failover time to less than one minute.
To Next Page
Loading...
Need help?
General
