User`s guide
Chapter 10 IPSec VPN Config Screens
LAN-Cell 2 User’s Guide
228
10.4 VPN Rules (Manual): Edit Screen
Click the Add button or the edit icon on the VPN Rules (Manual) screen to open the
following screen. Use this screen to configure VPN rules that use manual keys. Manual key
management is useful if you have problems with IKE key management.
See Section on page 253 for more information about IPSec SAs using manual keys.
Remote Network This is the IP address(es) of computer(s) on the remote network behind the remote
IPSec router.
This field displays N/A when the Remote Gateway Address field displays 0.0.0.0.
In this case only the remote IPSec router can initiate the VPN.
The same (static) IP address is displayed twice when the Remote Network
Address Type field in the VPN - Manual Key - Edit screen is configured to Single
Address.
The beginning and ending (static) IP addresses, in a range of computers are
displayed when the Remote Network Address Type field in the VPN - Manual
Key - Edit screen is configured to Range Address.
A (static) IP address and a subnet mask are displayed when the Remote Network
Address Type field in the VPN - Manual Key - Edit screen is configured to
Subnet Address.
Encap. This field displays Tunnel or Transport mode (Tunnel is the default selection).
IPSec Algorithm This field displays the security protocols used for an SA.
Both AH and ESP increase LAN-Cell processing requirements and
communications latency (delay).
Remote Gateway
Address
This is the static WAN IP address or domain name of the remote IPSec router.
Modify Click the edit icon to edit the VPN policy.
Click the delete icon to remove the VPN policy. A window displays asking you to
confirm that you want to delete the VPN rule. When a VPN policy is deleted,
subsequent policies move up in the page list.
Add Click Add to add a new VPN policy.
Table 81 SECURITY > VPN > VPN Rules (Manual) (continued)
LABEL DESCRIPTION