Perle Systems IOLINK-520 User Manual
Page 64
Applications
2.44 — IOLINK-520 & IOLINK-PRO Installation & Applications Guide
To do its job as a router, this device must know where to forward packets with IP addresses
outside the LAN. This may be done in a number of ways: a static IP route to the LAN at the
other end of the SA connection may be set, the IP address of the Internet Service Provider
may be set as the Default Gateway, or an IPSec policy item may be created specifically to
pass RIP packets.
To set a policy item for RIP packets, first set the action to bypass IPSec so the packets are
not processed.
IPSec ESP SA
Location: Main
! Configuration
! Packet Services Set-up
! IP Security Set-up
! Policy Set-up
! Edit Item
pass_RIP
! Action
bypass_IPSec
then set up the rules to check for RIP packets
IPSec ESP SA
Location: Main
! Configuration
! Packet Services Set-up
! IP Security Set-up
! Policy Set-up
! Edit Item
pass_RIP
! Selection Rules
! Src IP
any
! Dest IP
any
! Protocol
17
! Src port
520
! Dest Port
520
RIP packets (protocol 17 - UDP) to and from any IP and to and from port 520
will be passed through the WAN interface on this router.
"
"
"
"
"
"
"
"