M2M Cellular Gateway
Configuration Path
Local Subnet
Local Netmask
Full Tunnel
Remote Subnet
Remote Netmask
Remote Gateway
Configuration Path
Key Management
Local ID
Remote ID
Configuration Path
Negotiation Mode
X‐Auth
For Network‐B at Branch Office
Following tables list the parameter configuration as an example for the "My
Certificates" function used in the user authentication of IPSec VPN tunnel establishing,
as shown in above diagram. The configuration example must be combined with the
ones in following two sections to complete the whole user scenario.
Use default value for those parameters that are not mentioned in the tables.
Configuration Path
Name
Key
Subject Name
Configuration Path
IPSec
Configuration Path
Tunnel
Tunnel Name
Interface
Tunnel Scenario
Operation Mode
Index skipping is used to reserve slots for new function insertion, when required.
[IPSec]‐[Local & Remote Configuration]
10.0.76.0
255.255.255.0
Disable
10.0.75.0
255.255.255.0
118.18.81.33
[IPSec]‐[Authentication]
IKE+X.509 Local Certificate: HQCRT Remote Certificate: BranchCRT
User Name Network‐A
User Name Network‐B
[IPSec]‐[IKE Phase]
Main Mode
None
[My Certificates]‐[Local Certificate Configuration]
BranchCRT Self‐signed: □
Key Type: RSA Key Length: 1024‐bits
Country(C): TW State(ST): Taiwan Location(L): Tainan
Organization(O): AMITBranch Organization Unit(OU): BranchRD
Common Name(CN): BranchCRT E‐mail: branchcrt@amit.com.tw
[IPSec]‐[Configuration]
■ Enable
[IPSec]‐[Tunnel Configuration]
■ Enable
s2s‐102
WAN 1
Site to Site
Always on
282