Shared secret field description – Perle Systems IOLAN SCS User Manual

Page 225

Advertising
background image

225

VPN

Shared Secret Field Description

When the

Authentication Method

is set to

Shared Secret

, you can enter a secret that applies to all

VPN tunnels (both the IPsec and L2TP/IPsec protocols) to successfully authenticate and create a
valid connection.

Configure the following parameter:

Remote Next Hop

The IP address of the router/gateway that will forward data packets to the
IOLAN (if required). The router/gateway must reside on the same subnet at the
remote VPN.

Field Format: IPv4 or IPv6 address

Remote
Host/Network
Address

The IP address of a specific host or the network address that the IOLAN will
provide a VPN connection to. If the IPsec tunnel is listening for connections
(

Boot Action

set to

Add

), and the field value is left at

0.0.0.0

, any VPN peer

with a private remote network/host that conforms to RFC 1918 (10.0.0.0/8,
172.16.0.0./12, 192.168.0.0/16) will be allowed to use this tunnel if it
successfully authenticates.

Field Format: IPv4 or IPv6 address

Remote IPv4
Subnet Mask

The subnet mask of the remote IPv4 network. Keep the default value when you
are configuring a host-to-host VPN connection.

Default: 255.255.255.255

Remote IPv6 Prefix
Bits

The prefix bits of the remote IPv6 network. Keep the default value when you
are configuring a host-to-host VPN connection.

Default: 0

Boot Action

Determines the state of the VPN network when the IOLAN is booted.

Data Options:

z

Start—Starts the VPN network, initiating communication to the remote
VPN.

z

Add—Adds the VPN network, but doesn’t initiate a connection to the
remote VPN.

z

Ignore—Maintains the VPN network configuration, but the VPN network
is not started and cannot be started through the IPsec command option.

When defining peer VPN gateways, one side should be defined as

Start

(initiate) and the other as

Add

(listen). It is invalid to define both gateways as

Add

. VPN connection time can take longer when both gateways are set to

Start

, as both sides will attempt to initiate the same VPN connection.

Default: Start

Secret

When the

Authentication Method

is set to

Shared Secret

, enter the

case-sensitive secret word.This applies to all VPN tunnels (IPsec and
L2TP/IPsec).

Field Format: Maximum of 16 characters, spaces not allowed

Advertising
Popular Brands
Popular manuals