Vpn connections, Ipsec vpn connection details, Editing a vpn connection, part 1 – RuggedCom RuggedRouter RX1100 User Manual
Page 152
16. Configuring IPsec VPN
Revision 1.14.3
152
RX1000/RX1100™
This menu lists available certificate files, their corresponding key files and details whether a public
key for the certificate is configured.
16.2.8. VPN Connections
The IPsec main menu “Add a new IPsec VPN connection” link leads to the “Create Connection” menu,
creating a new connection and its icon. Selecting the connection's icon from the IPsec main menu
displays the same menu, allowing editing and deletion.
Note
RuggedRouter supports a maximum of 100 IPSec tunnels.
An IPsec connection is composed of three types of information. There is information about the local
host, the remote host and about the overall connection between them. The configuration data has
been designed in such a way that there are identical connection specifications on both ends. Because
of this, connection specifications are written in terms of “left” and “right” participants, rather than in
terms of local and remote. Which participant is considered left or right is arbitrary; IPsec figures out
which one it is being run on based on internal information.
The Create/Edit Connection menu is reflects this organization by being split into three sections. The
first section (IPsec VPN Connection Details) describes parameters relating to the connection itself.
The next two sections (Left System's Settings, Right System's Settings) describe IP networking
parameters and RSA signatures at each peer. These two sections are identical and are described
once.
16.2.8.1. IPsec VPN Connection Details
Figure 16.9. Editing A VPN Connection, Part 1
The Connection name field associates a name with the connection. Do not embed whitespace in
the name.
The At IPsec startup field determines what happens to the connection after Openswan starts and
includes the options “Ignore”, “Add connection”, “Start Connection”, “Route” and “Default”. A value of
“Ignore” will cause the connection to be ignored. A value of “Add connection” will cause the connection
to be established when explicitly started (via command line or the IPsec VPN Configuration menu