174
VPN advanced configuration
Variable
Peer Identity Type/Value
Local Identity Type/Value
Traffic Selector table
Local Address
Local Address Mask
Remote Address
Remote Address Mask
Protocol
IP Sec Phase 2 Proposal table
Protocol
NN47928-500
NN47928-500
Value
Select the identity type to access the remote network. Select one of the
following:
•
IPV4 - IP address
•
FQDN - Fully Qualified Domain Name
•
EMAIL - email address of the user
•
KEYID - uniquely identifies the peer
Select the associated value from the list. The list contains the Remote
Identity values added on VPN Global Settings.
Select the identity type to access the local network. Select one of the
following:
•
IPV4 - IP address
•
FQDN - Fully Qualified Domain Name
•
EMAIL - email address of the user
•
KEYID - uniquely identifies the peer
Type the associated value.
Type the Source IP address of the outbound traffic.
Type the Network mask of the outbound traffic.
Type the Destination IP address of the outbound traffic.
Type the Destination mask of the outbound traffic.
Select the traffic protocol for the source or destination address. Select one
of the following options:
•
Any
•
TCP
•
UDP
•
ICMPv4
•
AH
•
ESP
When you select a protocol and apply the IPSec policy, the policy is
applied on the selected protocol packets only. For example, if IPSec is
selected, when you ping from one host to another, only ICMP packets are
encrypted or authenticated.
Select the authentication protocol. Select one of the following:
•
ESP - IPSec encrypts and authenticates.
•
AH - IPSec authenticates only.