AMPLIFIED ENGINEERING fatbox G3 Посібник - Сторінка 15
Переглянути онлайн або завантажити pdf Посібник для Мережевий маршрутизатор AMPLIFIED ENGINEERING fatbox G3. AMPLIFIED ENGINEERING fatbox G3 20 сторінок.
WEB
fatbox G3
MANAGEMENT
MENU OPTIONS
3.6
IPSEC VPN
Quick Start
LAN Ethernet
WAN Cellular
Port Forwarding
Dynamic DNS
IPSEC VPN
FATBOX G3 configuration
Serial Port
Management
for Site-to-Site IPSEC VPN
System Status
(as of the example in the
Logout
previous page)
Site-to-Site IKE PSK IPSEC Settings
3G IPSEC
1
VPN Server IP address
VPN Server Subnet IP Address/ Mask
Local VPN Subnet IP Address/ Mask
PSK Phasephrase
Start Mode (auto)
start
ISAKMP Phase 1
Encryption
aes128
Hash Algorithm
sha1
D-H Group
modp1024
Phase 2
Encryption
aes128
Authentication (HMAC)
sha1
PFS Group
IKEv1 Agressive Mode
no = main mode yes = agressive
no
IKE SA Lifetime (s)
10800
IPSEC Lifetime (s)
3600
DPD Action
restart
DPD Delay (s)
30
DPD Timeout (s)
150
UPDATE
1 = enable 0 = disable
start or route
E.g. 3des, aes128, aes192, aes256
E.g. 3des, aes128, aes192, aes256
E.g. 1, 2, 5, 14..
E.g. 3des, aes128, aes192, aes256
E.g. md1, sha1, sha256
E.g. 10800
E.g. 3600
none, clear, hold or restart
E.g. 30
E.g. 150
fatbox G3
1 = IPSEC enabled, 0 = IPSEC disabled
202.200.XXX.XXX (according to public IP
assigned)
192.168.1.0/24 (according to network set-
tings)
10.1.1.0/24 (according to network settings)
Set to match remote end settings
start = IPSEC tunnel will automatically be
connected;
route = IPSEC tunnel will be connected
when data is present
Settings to correspond with remote end
settings
UPDATE and restart FATBOX