Table of Contents
Advertisement
18 VPN
348
Field
Block Time
NAT Traversal
CA Certificates
Description
The function is enabled by default.
Define how long a peer is blocked for tunnel setups after a
phase 1 tunnel setup has failed. This only affects locally initiated
setup attempts.
Possible values are
to
value in the default profile is used and
never blocked.
The default value is
.
NAT Traversal (NAT-T) also enables IPSec tunnels to be
opened via one or more devices on which network address
translation (NAT) is activated.
Without NAT-T, incompatibilities may arise between IPSec and
NAT (see RFC 3715, section 2). These primarily prevent the
setup of an IPSec tunnel from a host within a LANs and behind
a NAT device to another host or device. NAT-T enables these
kinds of tunnels without conflicts with NAT device, activated
NAT is automatically detected by the IPSec Daemon and NAT-T
is used.
Only for
Possible values:
•
(default value): NAT Traversal is enabled.
•
: NAT Traversal is disabled.
•
: The device always behaves as it would if NAT were in
use.
Only for
The function is enabled with
The function is enabled by default.
Only for Phase-1 (IKE) Parameters
Only for Authentication Method =
or
If you enable the Trust the following CA certificates option,
Teldat GmbH
(seconds);
means the
means that the peer is
.
,
bintec Rxxx2/RTxxx2
Hide quick links:
Advertisement
Table of Contents
