32 overview of weos vpn and tunnel support, 1 weos support for vpns, Chapters 32 – Westermo RedFox Series User Manual
Page 748: Overview of weos vpn and tunnel support, Chapter 32
Westermo OS Management Guide
Version 4.17.0-0
Chapter 32
Overview of WeOS VPN and
Tunnel support
This chapter introduces WeOS support for virtual private networks (VPNs), IPsec
and SSL VPN, as well as support for tunneling/point-to-point functionality (GRE
and PPP). Although GRE and PPP can be used as part of VPNs, they can also be
used as standalone features, e.g., to setup IP communication over a serial link.
32.1
WeOS support for VPNs
As shown in
, a WeOS switch can act as a VPN gateway in NETWORK-
NETWORK and HOST-NETWORK scenarios. Configured as a VPN gateway, it can
be used to securely connect branch office networks with a central office network,
or to serve individual users wishing to ”dial in” securely over the Internet to the
central office network, with their PC connected at some remote site. The data
traffic will be protected by encrypted tunnels when sent over the Internet. A
WeOS unit supports at most 25 simultaneous VPN tunnels.
WeOS provides two flavours of VPN support, which both support NETWORK-NETWORK
and HOST-NETWORK VPN scenarios.
❼ IPsec VPNs: WeOS supports IPsec VPNs with IKEv1 (shared key and certifi-
cates) for authentication, and ESP for encapsulation of encrypted IP packets.
❼ SSL VPN: The WeOS SSL VPN support is based on OpenVPN
748
➞ 2015 Westermo Teleindustri AB