Avocent Access Router Cyclades-PR2000 User Manual

Cyclades-PR2000

Chapter 14 - Virtual Private Network Configuration

119

STEP SIX
Now, the Remote Security Networks must be defined. This is done in the CONFIG =>SECURITY =>VPN
=>REMOTE IP NETWORKS =>ADD NETWORK menu. The IP address and network mask must be defined for
all remote devices to be included in the remote network for VPN communication. The Remote Security
Gateway IP address (set in step five) must also be given for each network. In the example, the RSG IP
address for the network 10.255.255.0 is 9.9.9.1, and the RSG IP address for the network 192.168.0.0 is
20.20.20.1.

STEP SEVEN
The last step is to activate VPN and configure the VPN options. Be aware that after activating VPN on the local
network, data sent to the remote network will not be forwarded until VPN is configured and activated on that
network too. The VPN Options Menu parameters should be set using the guidelines given below. The options
should be defined identically for all Remote Security Gateways in a VPN.

VPN Options Menu CONFIG =>SECURITY =>VPN =>OPTIONS

Parameter

Description

Cyclades VPN Status Activates the Virtual Private Network. Warning: until VPN is activated on both ends of

a given tunnel, all traffic will halt.

Tunnel Keepalive
Timeout

Keepalive messages are sent across each tunnel with this frequency, to make sure
that the router on the other end of the connection is operating.

Tunnel Keepalive
Retries

If a keepalive message reply is not received, the router sends the request again this
number of times.

Tunnel Inactivity
Timeout

If no messages are passed for this time period (keepalive messages not included), the
tunnel will be disconnected.

Time Interval for VPN
Retries

This is the time between retries (for either tunnel creation or keepalive requests that
are not acknowledged).