Manualshelf

Service manual

ManualsBrandsAvocent ManualsComputer equipmentCyclades ACS
21222324252627282930
Chapter 2: Network Configuration 17
2. Activate and save your configuration.
VPN Configuration
You can set up VPN connections to establish an encrypted communication between the console
server and a host on a remote network. The encryption creates a security tunnel for dedicated
communications.
To set up a security gateway, you should install IPSec. The ESP and AH authentication protocols,
and RSA Public Keys and Shared Secret are supported.
To configure VPN:
1. Execute the following command to enable IPSec.
cli> config security profile custom ipsec <yes>
2. Configure VPN parameters, see Table 2.6.
cli> config network vpn [parameter] <value>
3. Activate and save your configuration.
.
Table 2.6: VPN Parameters
Parameter Value Description
add <connection name> A name to identify the connection.
authmethod <rsapubkey|sharesecret> Authentication method used. Either RSA Public Key or
Shared Secret.
authprotocol <ah|esp> Authentication protocol used. Either Encapsulating Security
Payload (ESP) or Authentication Header (AH).
bootaction <add|ignore|start> The boot action configured for the host.
leftid
rightid
hostname@xyz.com This is the hostname that a local system and a remote
system use for IPSec negotiation and authentication. It may
be a fully qualified domain name (FQDN) preceded by @.
For example, hostname@xyz.com.
leftip
rightip
<IP_address> The IPv4 or IPv6 address of the host.
leftnexthop
rightnexthop
<IP_address> The IPv4 or IPv6 address of the router through which the
console server (on the left side) or the remote host (on the
right side) sends packets to a host on a network.
leftrsakey
rightrsakey
<string> You need to generate a public key for the console server
and find out the key used on the remote gateway. You may
use copy and paste to enter the key in the RSA Key field.