Charles 3641-80 User Manual page 103

Ethernet routers

Hide thumbs Also See for 3641-80:

Installation manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

page of 160

/ 160
Contents
Table of Contents
Bookmarks

Table of Contents

I s s u e 1 . 0 , A p r i l 2 0 0 6

AH transform

IPCOMP transform

tunnel type

• Target host: Destination of decrypted traffic

ip range?

ip 1(ip address / ip address 1)

ip 2(subnet mask / ip address 2) The subnet mask of the target host / The End

Note: IKE life duration (SA lifetime)/IKE Hash/IKE Encryption/IPSec Operation

(protocol)/ESP transform/ESP auth: When negotiating ABCD VPN IPSec to ABCD

VPN IPSec, it is not critical to match up these settings on both servers. The routers have

the ability to respond to and initiator's negotiation and handle it accordingly, without

detecting a mismatch in policy and rejecting the negotiation. If desired, you may enter the

settings shown in our example.

6. When you have finished the settings, scroll to the bottom of the page and click the Add

Endpoint button. A window will pop up indicating a successful save.

NOTE: You must configure the Main Office VPN Router (main@ABCD.com) as

we have configured the Branch Office VPN Router (remote@ABCD.com)

above. Once you have configured both sides of the connection, you can test

the tunnel using PING. To verify that your tunnel is working, ping the IP

address of a computer on the remote network. If you ping the main network, it

will only trigger phase 1 and 2 negotiations. You will only receive a reply if you

The availability of features and technical specifications herein subject to change without notice.

ping an actual IP address on the network, such as the router WAN IP address.

You can use Microsoft HyperTerminal to view phase 1 and 2 negotiations.

null.

The options include: md5, shal, des-mac,

null.

The options include: lzs, null.

The options include: public, private.

Public uses the ESP protocol only.

Private provides UDP encapsulation for

NAT traversal. We are using ports 2787

(ESP), 2788 (AH), and 2845 (IPCOMP).

Public should be used for initial testing.

The options include: Subnet, IP Range

The IP address of the target host / The Start IP

address of the target host IP range

IP address of the target host IP range

Section 364-180-N02

Table of Contents

This manual is also suitable for:

3648-80

Charles 3641-80 User Manual page 103

Related Manuals for Charles 3641-80

Related Products for Charles 3641-80

This manual is also suitable for:

Table of Contents