Unified Services Router
•
Remote Gateway Type: identify the remote endpoint of the tunnel by FQDN or
static IP address
•
Remote WAN IP address / FQDN: This field is enabled only if the peer you are
trying to connect to is a Gateway. For VPN Clients, this IP address or Internet
Name is determined when a connection request is received from a client.
•
Local Gateway Type: identify this router's endpoint of the tunnel by FQDN or
static IP address
•
Local WAN IP address / FQDN: This field can be left blank if you are not using a
different FQDN or IP address than the one specified in the WAN port's
configuration.
3.
Configure the Secure Connection Remote Accessibility fields to identify the remote
network:
•
Remote LAN IP address: address of the LAN behind the peer gateway
•
Remote LAN Subnet Mask: the subnet mask of the LAN behind the peer
Note: The IP address range used on the remote LAN must be different from the IP
address range used on the local LAN.
4.
Review the settings and click Connect to establish the tunnel.
The Wizard will create an Auto IPsec policy with the following default values for a
VPN Client or Gateway policy (these can be accessed from a link on the Wizard page):
Parameter
Exchange Mode
ID Type
Local WAN ID
Remote WAN ID
Encryption Algorithm
Authentication Algorithm
Authentication Method
PFS Key-Group
Life Time (Phase 1)
Life Time (Phase 2)
NETBIOS
Default value from Wizard
Aggressive (Client policy ) or Main (Gateway policy)
FQDN
wan_local.com (only applies to Client policies)
wan_remote.com (only applies to Client policies)
3DES
SHA-1
Pre-shared Key (max 64 digits)
DH-Group 2(1024 bit)
24 hours
8 hours
Enabled (only applies to Gateway policies)
113
User Manual