Configuring Ipsec Policies - D-Link DWC-1000 User Manual

Wireless controller

Hide thumbs Also See for DWC-1000:

User manual (390 pages)

Reference manual (146 pages)

Quick installation manual (53 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

page of 181

/ 181
Contents
Table of Contents
Bookmarks

Table of Contents

Wireless Controller

Parameter

Exchange Mode

ID Type

Local WAN ID

Remote WAN ID

Encryption Algorithm

Authentication Algorithm

Authentication Method

PFS Key-Group

Life Time (Phase 1)

NETBIOS



The VPN Wizard is the recommended method to set up an Auto IPsec policy.

Once the Wizard creates the matching IKE and VPN policies required by t he Auto

policy, one can modify the required fields through the edit link. Refer to the online

help for details.

Easy Setup Site to Site VPN Tunnel:

If you find it difficult to configure VPN policies through VPN wizard use easy setup

site to site VPN tunnel. This will add VPN policies by importing a file containing vpn

policies.

6.2 Configuring IPsec Policies

Setup > VPN Settings > IPsec > IPsec Policies

An IPsec policy is between this controller and another gateway or this controller and

a IPsec client on a remote host. The IPsec mode can be either tunnel or transport

depending on the network being traversed between the two policy endpoints.



Transport: This is used for end-to-end communication between this controller and

the tunnel endpoint, either another IPsec gateway or an IPsec VPN client on a host.

Only the data payload is encrypted and the IP header is not modified or encrypted.



Tunnel: This mode is used for network-to-network IPsec tunnels where this

gateway is one endpoint of the tunnel. In this mo de the entire IP packet including

the header is encrypted and/or authenticated.

When tunnel mode is selected, you can enable NetBIOS and DHCP over IPsec.

DHCP over IPsec allows this controller to serve IP leases to hosts on the remote LAN.

As well in this mode you can define the single IP address, range of IPs, or subnet on

both the local and remote private networks that can communicate over the tunnel.

Default value from Wizard

Aggressive (Client policy ) or Main (Gateway policy)

FQDN

wan_local.com (only applies to Client policies)

wan_remote.com (only applies to Client policies)

3DES

SHA-1

Pre-shared Key

DH-Group 2(1024 bit)

24 hours

Enabled (only applies to Gateway policies)

121

User Manual

Table of Contents

Configuring Ipsec Policies - D-Link DWC-1000 User Manual

6.2 Configuring IPsec Policies

Related Manuals for D-Link DWC-1000

Related Content for D-Link DWC-1000

Table of Contents