Manualshelf

User guide

ManualsBrandsMultitech ManualsComputer equipmentrCell 500 Series
31323334353637383940
VPN SETUP
VPN Setup
A virtual private network (VPN) extends a private network across a public network, such as the Internet. It enables
a computer to send and receive data across shared or public networks as if it were directly connected to the
private network, while benefiting from the functionality, security, and management policies of a private network.
VPN-IPSec
VPN-IPSEC: Check Enable to trigger the function of VPN-IPSEC.
Netbios over IPSEC: Check to Enableto receive the Netbios from Network Neighborhood.
NAT Traversal: Some NAT router will block IPSec packets if it doesn’t support IPSec pass-through. If you
connect to another NAT router which doesn’t support IPSec pass-through at WAN side, you need to activate
this option.
Max. number of tunnels: The device supports up to 32 IPSec tunnels. You can define the required IPSec
tunnel settings by clicking on the corresponding Edit button and then check the Enable box to enable it.
Dynamic IP VPN: Enable it when you need remote mobile hosts build security tunnel with the Gateway. It is
disabled by default. Click Edit to finish configuration.
Dynamic IP VPN
A VPN gateway can ignore IP information of client when using Dynamic VPN, so it is suitable for users to build VPN
tunnel with VPN gateway from a remote mobile host.
Tunnel name: Assign a name for this tunnel.
Local subnet: This can be a host, a partial subnet, or the whole subnet of LAN site of local gateway.
Local Netmask: The local netmask and associated local subnet can define a subnet domain for the devices
connected via the VPN tunnel.
Phase 1 Key Life Time: The value represents the life time of the key which is dedicated at Phase 1 between
both end gateways.
Phase 2 Key Life Time: The value represents the life time of the key which is dedicated at Phase 2 between
both end gateways.
Encapsulation Protocol: There are three protocols can be selected: ESP, AH, or ESP+AH.
PFS Group: Configures Perfect Forward Secrecy for connections created with this IPSec transport profile by
assigning a Diffie-Hellman prime modulus group. There are three groups can be selected: Group 1, Group 2,
Group 5.
Disable: No PFS group.
Group 1: 768-bit Diffie-Hellman prime modulus group.
Group 2: 1024-bit Diffie-Hellman prime modulus group.
Group 5: 1536-bit Diffie-Hellman prime modulus group.
Preshare key: The pre-shared key must be the same one for both VPN gateways and clients.
Remote ID: The Type and Value of the local VPN gateway must be the same as the local ID of the remote
VPN gateway.
Local ID: The Type and the Value of the local VPN gateway must be the same as the Remote ID of the
remote VPN gateway.
36 MultiConnect
®
rCell 500 Series Router User Guide