Draytek Vigor2860 User Manual page 400
Vigor2860 series.
vdsl2 security firewall
Hide thumbs
Also See for Vigor2860:
- User manual (905 pages) ,
- Quick start quide (67 pages) ,
- Quick start manual (56 pages)
Table of Contents
Advertisement
Item
Subnet
IKE Authentication
Method
IPSec Security Method
386
Description
make a L2TP VPN connection through the Internet. You can
select to use L2TP alone or with IPSec. Select from below:
None - Do not apply the IPSec policy. Accordingly, the
VPN connection employed the L2TP without IPSec policy
can be viewed as one pure L2TP connection.
Nice to Have - Apply the IPSec policy first, if it is
applicable during negotiation. Otherwise, the dial-in VPN
connection becomes one pure L2TP connection.
Must -Specify the IPSec policy to be definitely applied on
the L2TP connection.
SSL Tunnel - It allows the remote dial-in user to make an SSL
VPN Tunnel connection through Internet, suitable for the
application through network accessing (e.g.,
PPTP/L2TP/IPSec)
If you check this box, the function of SSL Tunnel for this
account will be activated immediately.
Specify Remote Node - Check the checkbox to specify the IP
address of the remote dial-in user, ISDN number or peer ID
(used in IKE aggressive mode). If you uncheck the checkbox,
the connection type you select above will apply the
authentication methods and security methods in the general
settings.
Netbios Naming Packet
Pass – Click it to have an inquiry for data transmission
between the hosts located on both sides of VPN Tunnel
while connecting.
Block – When there is conflict occurred between the
hosts on both sides of VPN Tunnel in connecting, such
function can block data transmission of Netbios Naming
Packet inside the tunnel.
Multicast via VPN - Some programs might send multicast
packets via VPN connection.
Pass – Click this button to let multicast packets pass
through the router.
Block – This is default setting. Click this button to let
multicast packets be blocked by the router.
Chose one of the subnet selections for such VPN profile.
Assign Static IP Address – Please type a static IP address for
the subnet you specified.
This group of fields is applicable for IPSec Tunnels and L2TP
with IPSec Policy when you specify the IP address of the
remote node. The only exception is Digital Signature (X.509)
can be set when you select IPSec tunnel either with or without
specify the IP address of the remote node.
Pre-Shared Key - Check the box of Pre-Shared Key to invoke
this function and type in the required characters (1-63) as the
pre-shared key.
Digital Signature (X.509) – Check the box of Digital Signature
to invoke this function and Select one predefined Profiles set
in the VPN and Remote Access >>IPSec Peer Identity.
This group of fields is a must for IPSec Tunnels and L2TP with
IPSec Policy when you specify the remote node. Check the
Medium, DES, 3DES or AES box as the security method.
Vigor2860 Series User's Guide
Hide quick links:
Advertisement
Table of Contents
