User's Manual
www
The
.netcommwireless.com
following table desc
r
I
T
IPSec profile
Profile name
Remote IPSec server ad
d
Remote LAN address
Remote LAN subnet ma
s
Local LAN address
Local LAN subnet mask
Encapsulation type
IKE mode
PFS
IKE encryption
IKE hash
IPSec encryption
IPSec hash
DH group
DPD action
DPD keep alive time
DPD timeout
IKE re-key time
SA life time
Key mode
Pre-shared key
Remote ID
Local ID
Update Time
Local RSA Key Upload
Remote RSA Key Uploa
d
Private key Passphrase
Key / Certificate
IPSec Certificate Upload
r
ibes each of the fiel
d
T
EM
d
ress
s
k
d
d
s of the IPSec VPN
Enables or disable
s
A
name used to id
e
The IP address of t
h
Enter the IP addres
Enter the subnet m
a
Enter the IP addres
Enter the subnet m
a
Select the encapsu
Select the IKE mod
Choose whether P
e
Select the cipher t
y
Select the IKE Has
h
Select the IPSec e
n
Select the IPSec h
a
Select the desired
D
Select the desired
D
Enter the time in se
Enter the time in se
Enter the time in se
Enter the time in se
Select the type of k
P
r
R
S
C
The pre-shared ke
y
Specifies the doma
Specifies the doma
Displays the last ti
m
Select the RSA key
Select the RSA key
The Private key pa
s
Select the type of k
Select the IPSec c
e
C
onnection Settings
s
the VPN profile.
e
ntify the VPN connection
p
h
e IPSec server.
s
of the remote network fo
r
a
sk in use on the remote n
e
s
of the local network for u
a
sk in use on the local net
w
lation protocol to use with
t
e
to use with the VPN con
n
e
rfect Forward Secrecy is
O
pe to use for the Internet
K
h
type to use for the VPN c
o
cryption type to use with t
h
a
sh type to use for the VPN
D
iffie-Hellman group to us
e
D
ead Peer Detection actio
n
c
onds for the interval bet
w
c
onds of no response fro
m
c
onds between changes
o
c
onds for the security ass
o
e
y mode in use for the VP
N
r
e Shared Key
S
A keys
e
rtificates
y
is the key that peers use
d
in name of the remote net
w
in name of the local netwo
m
e the key was updated.
file for the local router her
e
file for the remote router h
e
s
sphrase of the router is th
e
e
y or certificate to use for
a
e
rtificate to upload by click
i
Table
1
page.
p
rofile.
r
use on the VPN connecti
o
e
twork.
se on the VPN connection
w
ork.
the VPN connection. You
c
n
ection. You can choose
M
O
N or OFF for the VPN con
K
ey Exchange.
onnection. The hash is us
e
h
e VPN connection.
connection. The hash is
u
e
. Higher groups are more
n
. This is the action to tak
e
w
een Dead Peer Detection
m
a peer before Dead Peer
o
f the encryption key. To di
o
ciation lifetime.
N
connection. You can sel
e
d
to authenticate each oth
e
w
ork.
rk.
e
by clicking the Browse b
ere by clicking the Brows
e
e
passphrase used when
g
a
uthentication. You can se
ing the Browse button.
15
- IPSec Configurat
i
DEFINITION
o
n.
.
c
an choose ESP, AH or An
M
ain, Aggressive or Any.
nection.
e
d for authentication of pa
c
sed for authentication of p
secure but also require lo
n
when a dead Internet Ke
y
keep alive messages.
Detection times out.
sable changing the key, s
e
e
ct from:
e
r for Internet Key Exchang
utton.
e
button.
g
enerating the router’s pri
v
lect Local private key, Loc
a
i
on Item
s
y
.
c
kets for the key exchange
a
ckets for the VPN conne
c
n
ger to generate a key.
y
Exchange Peer is detect
e
e
t this to 0.
e
.
a
te key using OpenSSL C
A
a
l public certificate, Remot
NetComm Wir
e
e
.
c
tion.
e
d.
A
.
t
e public certificate, CA ce
r
e
less Intelligent M2M
R
r
tificate, CRL certificate.
R
oute
r
53