Table of Contents
Advertisement
WEB
MANAGEMENT
FATBOX_G3
MENU OPTIONS
3. 7
IPSEC VPN
Quick Start
LAN Settings
WiFi & BT Settings
WAN Settings
Port Forwarding
Dynamic DNS
FATBOX G3 configuration
IPsec VPN
for Site-to-Site IPSEC VPN
Port Settings
IoT Hardware
(as of the example in the
IoT Client
previous page)
SNMP
Management
System Status
Logout
Site-to-Site IKE PSK IPSEC Settings
3G IPSEC
Enabled
Disabled
IPSEC NATP
yourvpnhost
NATP DMZ Host
VPN Server IP address
yourvpngateway
VPN Server Subnet IP Address/ Mask
192.168.1.0/24
Local VPN Subnet IP Address/ Mask
10.1.1.0/24
PSK Phasephrase
Start Mode (auto)
Start
ISAKMP Phase 1
AES 128
Encryption
SHA1
Hash Algorithm
D-H Group
14
Phase 2
Encryption
AES 128
Authentication (HMAC)
SHA1
IKEv1 Mode
main mode
IKE SA Lifetime (s)
3600
IPSEC Lifetime (s)
3600
DPD Action
Restart
DPD Delay (s)
60
DPD Timeout (s)
180
UPDATE
120 - 86400 Sec
120 - 86400 Sec
10 - 240 Sec
10 - 240 Sec
fatbox G3
Enable or Disable IPSEC
Enable or Disable redirecting all traffic to
DMZ host
Enter the IP address of the DMZ host
Key in the outward-facing (public) IP of the
remote server
Key in the IP subnet set for the LAN on the
remote server side (i.e. 192.168.1.0/24)
Following this, your 'Local VPN subnet IP
Address/Mask (ETH1)' and 'ETH1 IP
Address' in the LAN Ethernet page must
also
correspond (For example if your 'ETH1 IP
Address' is 10.1.1.1, then your 'Local VPN
subnet IP Address/Mask (ETH1)' must be
10.1.1.0/24
10.1.1.0/24 (according to network settings)
Set to match remote end settings
start = IPSEC tunnel will automatically be
connected;
route = IPSEC tunnel will be connected
when data is present
Input these settings to correspond with
your remote end settings
UPDATE and restart FATBOX
- Quick Links:
- G3 Specifications
- Hardware
- Lan Ethernet
- Iot Client
Hide quick links:
Advertisement
Table of Contents
Need help?
Do you have a question about the fatbox G3 and is the answer not in the manual?