10 configuring vpn, 1 default parameters – Asus SL1200 User Manual

103

Chapter 10 - Configuring VPN

ASUS SL1200

10 Configuring VPN

The chapter contains instructions for configuring VPN connections using

automatic keying and manual keys.

10.1 Default Parameters

The router is pre-configured with a default set of proposals/connections.

They cover the most commonly used sets of parameters, required for

typical deployment scenarios. It is recommended that you use these pre-

configured proposals/connections to simplify VPN connection setup. The

default parameters provided in the router are as follows:

Default Connections

Each connection represents a rule that can be applied on traffic originating

from / terminating at the security gateway. It contains the parameters:

local/remote IP-Addresses and ports.
Table 10.1 lists the default connections that are provisioned on the

gateway:

Table 10.1. Default connections in the router

Name

Type Port Protocol State

Purpose

allow-ike-io passby 500

UDP

Enabled To allow the IKE traffic to the

Internet Security Router

allow-all

passby

Enabled To allow the plain traffic

Do not delete or modify default VPN policies.

Proposals
Each proposal represents a set of authentication/encryption parameters.

Once configured, a proposal can be tied to a connection. Upon session

establishment, one of the proposals specified is selected and used for the

tunnel. Multiple proposals can be specified for a connection. If you do not

specify the proposal to be used for a connection, all the pre-configured

proposals will be included for that connection.