Filter
Top Products
VPN
Gateway to Gateway
Cisco RV320/RV325 Administration Guide 85
9
If both routers have dynamic IP addresses (as with PPPoE connections),
do not choose Dynamic IP + Email Addr. for both gateways. For the
remote gateway, choose IP Address and IP Address by DNS Resolved.
Keying Mode = IKE with Certificate
• Local Security Gateway Type—LAN resources that can use this tunnel.
The only option is IP + Certificate.
- IP Address—Displays the WAN IP address of the device.
• Local Certificate—Certificates available in the Certificate Management >
My Certificate window. Select the certificate from the drop-down menu.
Self-Generator displays the Certificate Generator window.
Import Certificate displays the My Certificate window.
• Local Security Group Type—Allows selection of a single IP address, a
Subnet, or an IP (address) Range within a subnet.
- IP Address—Specify one device that can use this tunnel. Enter the IP
Address of the device.
- Subnet—Allow all devices on a subnet to use the VPN tunnel. Enter the
subnetwork IP Address and Subnet Mask.
- Begin IP and End IP (IP Range)—A range of devices that can use the
VPN tunnel. Enter the first IP address in Begin IP and the end IP address
in End IP.
Remote Group Setup
Enter the settings for the Remote Group Setup for this router:
• Remote Security Gateway Type—Method for identifying the router to
establish the VPN tunnel. The Remote Security Gateway is the other router.
At least one of the routers must have either a static IP address or a dynamic
DNS hostname to make a connection.
- IP Only—Static WAN IP address. If you know the IP address of the
remote VPN router, choose IP Address, and enter the address. If you do
not know the IP address of the remote VPN router, select IP by DNS
Resolved, and enter the domain name of the router. A Cisco router can
get the IP address of a remote VPN device by DNS Resolved.
- IP + Domain Name (FQDN) Authentication—This router has a static IP
address and a registered domain name, such as
MyServer.MyDomain.com. If you know the IP address of the remote