System information
Appendix A: Advanced Device Configuration 387
Address Configuration for Connected Devices
Figure A-11:Example 2: IPSec Connection Configuration for Access to sub1
Private Subnet and “sp1” and “sp2” Devices
In addition, the OnBoard administrator must do the following to enable the
IPSec client to access the subnets where the devices reside.:
• Give the user a copy of the parameters used to configure the IPSec
connection profiles on the OnBoard.
The OnBoard administrator can send a copy of the relevant portions of the
ipsec.conf file after the changes are saved and applied in the Web
Manager for the user to insert into the ipsec.conf file on the user’s
workstation.
The authorized user must do the following to enable the IPSec client running
on the user’s workstation to bring up the VPN tunnel to access the subnets
where the devices reside, and then to access the native IP features on the
devices.
• Use the same values used by the OnBoard administrator to create an
IPSec VPN connection profile on the user’s workstation.
If the OnBoard administrator sends the relevant portions of the
ipsec.conf file from the OnBoard’s IPSec configuration, use it to
replace the same section in the workstation’s ipsec.conf file.
• Bring up the IPSec VPN tunnel.
Depending on the platform and IPSec client being used, the user may use
a GUI or execute the ipsec auto -up command. IPSec automatically