User manual
25: Dynamic Multipoint Virtual Private Network (DMVPN)
_______________________________________________________________________________________________________
when traffic brings the
tunnel up.
Hold Clears down the tunnel
and bring up as soon as
the peer is available.
Restart Restarts DPD when no
activity is detected.
DPD Delay Integer Yes None
Defines the period time interval with
which R_U_THERE
messages/INFORMATIONAL
exchanges are sent to the peer.
These are only sent if no other
traffic is received.
Syntax: timespec: 1d, 2h, 25m,
10s.
DPD Timeout Integer Yes 150s
Defines the timeout interval, after
which all connections to a peer are
deleted in case of inactivity.
Syntax: timespec: 1d, 2h, 25m,
10s.
Table 20: Connections fields for strongSwan IPSec VPN
From the Name field, type the Connection Name.
From the Autostart Action drop down menu, select Ignore.
From the Connection Type drop down menu, select transport.
From the Authby dropdown menu, select psk.
From the IKE algorithm dropdown menu, select the encryption, hash
algorithm and DH group.
From the ESP algorithm dropdown menu, select the encryption and hash
algorithm.
From the WAN Interface dropdown menu select the interface that is used to
transmit IPSec packets.
In the IKE life time field, type the Ike life time value.
In the Key life field, type the Key life value.
In the Keying tries field, type a %forever value.
From the DPD Action drop down menu, select clear.
In the DPD Delay field, type a DPD delay value.
In the DPD Timeout field, type a relevant value.
At the bottom of the Secrets section, click Add.
_______________________________________________________________________________________________________
© Virtual Access 2015
GW1000 Series User Manual
Issue: 2.4 Page 171 of 255