157
Parameter description
It specifies a name for the IPSec connection.
Select an IP version to which the rule applies.
It specifies tunnel protocol the rule uses.
ESP: It specifies Encapsulating Security Payload. This protocol is used to test data
integrity and encryption. Even the encrypted packet is intercepted, the third party
also cannot obtain correct message.
AH: It specifies Authentication Header. This protocol is used to test data integrity. If a
packet is tampered during transmission, the receiver discards the packet when it
performs data integrity test.
Select a WAN service for the rule.
Remote IPSec
Gateway Address
It specifies the WAN IP address or domain name of the peer device enabled IPSec
function.
Tunnel access from
local IP addresses
Subnet: When Subnet is selected, you can specify any network address on LAN and
the corresponding subnet mask.
Single Address: When Single Address is selected, you can only specify an IP address of
a local host.
It specifies the IP address of a local host.
It specifies the subnet mask of the LAN you specified in IP Address for VPN.
Tunnel access from
remote IP addresses
Subnet: When Subnet is selected, you can specify all hosts on the peer network.
Single Address: When Single Address is selected, you can only specify one host on the
peer network.
It specifies IP address of a host on peer network.
It specifies LAN IP network segment of the peer router.
It specifies the key negotiation method.
Auto(IKE): When Auto(IKE) is selected, the negotiation process is divided into two
stages:
Stage 1: Both communication sides exchange verification algorithm, encryption
algorithm and so on security protocols, and establish an ISAKMP (Internet Security
Association and Key Management Protocol) SA (Security Association) which is used to
exchange more information in stage 2.
To Next Page
Loading...
