Ipsec Tunnel Configuration Field Descriptions - Multitech MultiConnect rCell 100 User Manual

IPsec Tunnel Configuration Field Descriptions

Field
IPSec Tunnel
Name
Description
IPSec Remote Tunnel Endpoint
Remote WAN IP
Saved Network
Remote Network Route
Remote Network Mask
Tunnel Type
IPsec Tunnel: IKE
Authentication Method
Pre-Shared Key
Secret
Encryption Method
RSA Signatures
CA Certificate
Local RSA Certificate
Local RSA Private Key
®
MultiConnect rCell 100 MTR-EV3 User Guide
Description
Name used to identify the IPsec tunnel in configurations and logs.
Optional text to describe the IPsec tunnel. This description shows up in
the UI while hovering over the summary of an IPsec tunnel.
External IP address of the remote tunnel endpoint. The remote device is
typically another router.
Select a saved network from the pre-defined list of user-defined
networks on the Setup > Saved Networks page. This network describes
the remote endpoint's subnet, and is used to identify packets that are
routed over the tunnel to the remote network.
This field is used in conjunction with the Remote Network Mask field
and describes the remote endpoint's subnet. This is used to identify
packets that are routed over the tunnel to the remote network.
This field is used in conjunction with the Remote Network Route field,
to describe the remote endpoint's subnet. It identifies packets that are
routed over the tunnel to the remote network.
Internet Key Exchange (IKE) for host-to-host, host-to-subnet, or subnet-
to-subnet tunnels. Choose from IKE or IKEv2.
Choose between Pre-Shared Key or RSA Signatures. Authentication is
performed using secret pre-shared keys and hashing algorithms (like
SHA1 MD5) or RSA signatures (you provide the CA Certificate, Local RSA
Certificate, and Local RSA Private Key in .pem format). If you check
Enable UID, then Local ID and Remote ID become available as options.
Authentication is performed using a secret pre-shared key and hashing
algorithms on both sides.
Secret key that is known by both endpoints.
IKE encryption algorithm used for the connection (phase 1 - ISAKMP SA).
Based off of phase 1, a secure set of defaults are used for phase 2,
unless the Advanced option is used, in which case, all components of
both phases 1 and 2 are specified by the user.
Authentication is performed using digital RSA signatures.
Certificate Authority certificate used to verify the remote endpoint's
certificate.
Certificate the local endpoint uses during Phase 1 Authentication.
The private key that the local endpoint uses during Phase 1
Authentication.
DEFINING TUNNELS
65