Users Manual Part 1
https://www.peplink.com 104 Copyright @ 2018 Pepwave
public IP addresses (i.e., 212.1.1.1, 212.2.2.2, and 212.3.3.3), and the field in Router A can be
left blank. The two NAT routers on WAN1 and WAN3 connected to Router A should inbound
port-forward TCP port 32015 to Router A so that all WANs will be utilized in establishing the
VPN.
13.3 SpeedFusion
TM
Status
SpeedFusion
TM
status is shown in the Dashboard. The connection status of each connection
profile is shown as below.
After clicking the Status button at the top right corner of the SpeedFusion
TM
table, you will be
forwarded to Status>SpeedFusion
TM
, where you can view subnet and WAN connection
information for each VPN peer. Please refer to Section 22.6 for details.
IP Subnets Must Be Unique Among VPN Peers
The entire interconnected SpeedFusion
TM
network is a single non-NAT IP network. Avoid duplicating subnets in
your sites to prevent connectivity problems when accessing those subnets.
14 IPsec VPN
IPsec VPN functionality securely connects one or more branch offices to your company's main
headquarters or to other branches. Data, voice, and video communications between these
locations are kept safe and confidential across the public Internet.
IPsec VPN on Pepwave routers is specially designed for multi-WAN environments. For instance,
if a user sets up multiple IPsec profiles for a multi-WAN environment and WAN1 is connected
and healthy, IPsec traffic will go through this link. However, should unforeseen problems (e.g.,
unplugged cables or ISP problems) cause WAN1 to go down, our IPsec implementation will
make use of WAN2 and WAN3 for failover.
14.1 IPsec VPN Settings
Many Pepwave products can make multiple IPsec VPN connections with Peplink, Pepwave,
Cisco, and Juniper routers. Note that all LAN subnets and the subnets behind them must be
unique. Otherwise, VPN members will not be able to access each other. All data can be routed
over the VPN with a selection of encryption standards, such as 3DES, AES-128, and AES-256.