Virtual Private Networks (VPN)
18. Click to expand Remote endpoint.
a. For IP version, select either IPv4 or IPv6.
b. For Hostname list selection, select one of the following:
n
n
n
c. Click to expand Hostname.
i. Click next to Add Hostname.
ii. For Hostname, type a hostname or IPv4 address. If your device is not configured to
initiate the IPsec connection (see IKE >
keyword any, which means that the hostname is dynamic or unknown.
iii. Click again to add additional hostnames.
d. Click to expand ID.
i. Select the ID type:
IX20 User Guide
FQDN: The ID will be interpreted as FQDN (Fully Qualified Domain Name) and
n
sent as an ID_FQDN IKE identity.
For FQDN ID value, type the ID as an FQDN.
KeyID: The ID will be interpreted as a Key ID and sent as an ID_KEY_ID IKE
n
identity.
For KEYID ID value, type the key ID.
MAC address: The device's primary MAC address will be used as the ID and
n
sent as a ID_KEY_ID IKE identity.
Serial number: The device's serial number will be used as the ID and sent as a
n
ID_KEY_ID IKE identity.
Round robin: Attempts to connect to hostnames sequentially based on the list
order.
Random: Randomly selects an IPsec peer to connect to from the hostname list.
Priority ordered: Selects the first hostname in the list that is resolvable.
Auto: The ID will be automatically determined from the value of the tunnels
n
endpoints.
Raw: Enter an ID and have it passed unmodified to the underlying IPsec stack.
n
For Raw ID value, type the ID that will be passed.
Any: Any ID will be accepted.
n
IPv4: The ID will be interpreted as an IPv4 address and sent as an ID_IPV4_
n
ADDR IKE identity.
For IPv4 ID value, type an IPv4 formatted ID. This can be a fully-qualified
domain name or an IPv4 address.
IPv6: The ID will be interpreted as an IPv6 address and sent as an ID_IPV6_
n
ADDR IKE identity.
For IPv6 ID value, type an IPv6 formatted ID. This can be a fully-qualified
domain name or an IPv6 address.
RFC822/Email: The ID will be interpreted as an RFC822 (email address).
n
For RFC822 ID value, type the ID in internet email address format.
FQDN: The ID will be interpreted as FQDN (Fully Qualified Domain Name) and
n
sent as an ID_FQDN IKE identity.
Initiate
connection), you can also use the
IPsec
296