Table of Contents
Advertisement
Local Certificate pull-down menu contains a list of the local certificates that have
been uploaded for x.509 authentication. Select the required certificate to be used
to negotiate the tunnel. This field appears when x.509 Certificates has been
selected.
Phase 2 settings page
Specify the Local Networks and Remote Networks to link together with the IPSec
tunnel. For the Local Network, you may use a Predefined network, or enter a Custom
network address. You must Add at least one local and one remote network.
Note
Only network traffic that is coming from a Local Network and is destined for a Remote
Network is allowed across the tunnel. IPSec uses its own routing mechanisms, and
disregards the main routing table.
For this example, select Network of LAN for the Local Network, and enter
192.168.1.0/24 for the Remote Network and click Add.
Set the length of time before Phase 2 is renegotiated in the Key lifetime (s) field. The
length may vary between 1 and 86400 seconds. For most applications 3600 seconds is
recommended. In this example, leave the Key Lifetime as the default value of 3600
seconds.
Virtual Private Networking
226
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the SG300 and is the answer not in the manual?
Questions and answers