181
E-DOC-CTC-20051017-0151 v1.0
Chapter 5
Expert Configuration
5.7.5 Advanced
When to use The Advanced VPN menu gives access to two main pages where the complete
IPSec configuration can be done. These pages are component-oriented, as opposed
to the application-oriented pages described in “5.7.1 LAN to LAN” on page 177,
“5.7.2 VPN Client” on page 178 and “5.7.3 VPN Server” on page 179. Component-
oriented means that a number of components are constructed and subsequently
combined.
How to use Configuring an operational IPSec connection basically consists of the definition of a
Peer Profile and a Connection Profile. The Peer represents the remote Security
Gateway and all the parameters required to set up an IKE Security Association to
this Security Gateway. A Connection represents the IPSec connection and all its
associated parameters.
All parameters of an IPSec configuration can be adjusted, so the functionality of
these web pages corresponds to the Command Line Interface (CLI). Choices have to
be made in accordance to the data known to the user, and the VPN layout.
It is highly recommended to use the application-oriented web pages for
VPN configurations. Only in exceptional cases, these pages will not be
sufficiently flexible to fulfil your requirements. Only in these cases, the
Advanced VPN menu should be used.
!
The Advanced VPN menu should be used by skilled persons only, as these
pages allow you to manually adjust configuration components that are in
general automatically generated by the SpeedTouch™. Therefore, take care
when altering settings in the Advanced VPN menu.