Perle Systems 4030370 Server User Manual


 
246
VPN
Shared Secret Field Description
When the Authentication Method is set to Shared Secret, you can enter a secret that applies to all
VPN tunnels (both the IPsec and L2TP/IPsec protocols) to successfully authenticate and create a
valid connection.
Configure the following parameter:
Remote Next Hop The IP address of the router/gateway that will forward data packets to the
IOLAN (if required). The router/gateway must reside on the same subnet at the
remote VPN.
Field Format: IPv4 or IPv6 address
Remote
Host/Network
Address
The IP address of a specific host or the network address that the IOLAN will
provide a VPN connection to. If the IPsec tunnel is listening for connections
(
Boot Action set to Add), and the field value is left at 0.0.0.0, any VPN peer
with a private remote network/host that conforms to RFC 1918 (10.0.0.0/8,
172.16.0.0./12, 192.168.0.0/16) will be allowed to use this tunnel if it
successfully authenticates.
Field Format: IPv4 or IPv6 address
Remote IPv4
Subnet Mask
The subnet mask of the remote IPv4 network. Keep the default value when you
are configuring a host-to-host VPN connection.
Default: 255.255.255.255
Remote IPv6 Prefix
Bits
The prefix bits of the remote IPv6 network. Keep the default value when you
are configuring a host-to-host VPN connection.
Default: 0
Boot Action Determines the state of the VPN network when the IOLAN is booted.
Data Options:
z Start—Starts the VPN network, initiating communication to the remote
VPN.
z Add—Adds the VPN network, but doesn’t initiate a connection to the
remote VPN.
z Ignore—Maintains the VPN network configuration, but the VPN network
is not started and cannot be started through the IPsec command option.
When defining peer VPN gateways, one side should be defined as
Start
(initiate) and the other as
Add (listen). It is invalid to define both gateways as
Add. VPN connection time can take longer when both gateways are set to
Start, as both sides will attempt to initiate the same VPN connection.
Default: Start
Secret When the Authentication Method is set to Shared Secret, enter the case-
sensitive secret word.This applies to all VPN tunnels (IPsec and L2TP/IPsec).
Field Format: Maximum of 16 characters, spaces not allowed