M2M Cellular Gateway
Dynamic VPN is suitable for the Initiator being a mobile site or a mobile device with a
dynamic IP, only the Responder has a "Static IP" or a "FQDN".
Two phases (IKE and IPSec) to negotiate for establishing an IPSec VPN tunnel with pre‐
shared key and optional X‐Auth account / password.
Parameter Setup Example
For Network‐A at HQ
Following 5 tables list the parameter configuration for above example diagram of IPSec
VPN tunnel in Network‐A.
Use default value for those parameters that are not mentioned in these 5 tables.
Configuration Path
IPSec
Configuration Path
Tunnel
Tunnel Name
Interface
Tunnel Scenario
Operation Mode
Configuration Path
Local Subnet
Local Netmask
Configuration Path
Key Management
Local ID
Configuration Path
Negotiation Mode
X‐Auth
For Network‐B at Mobile Office
Following 5 tables list the parameter configuration for above example diagram of IPSec
VPN tunnel in Network‐B.
Use default value for those parameters that are not mentioned in these 5 tables.
Please also note that the authentication parameters of both peers must match each
other to complete the authentication process successfully, and it is just for an example
here.
In addition, Negotiation Mode and X‐Auth in "IKE Phase" configuration window should
be also matched on both peers.
And there is at least one proposal entity in IKE Proposal Definition and at least one
proposal entity in IPSec Proposal Definition are same for both peers. Use the default
Index skipping is used to reserve slots for new function insertion, when required.
[IPSec]‐[Configuration]
■ Enable
[IPSec]‐[Tunnel Configuration]
■ Enable
dvpn‐101
WAN 1
Dynamic VPN
Always on
[IPSec]‐[Local & Remote Configuration]
10.0.76.0
255.255.255.0
[IPSec]‐[Authentication]
IKE+Pre‐shared Key 12345678
User Name Network‐B
[IPSec]‐[IKE Phase]
Main Mode
None
187