Red Lion IndustrialPr 6000 Router User Manual
Page 82
Software User Guide
82
Network Tab
For example, if the Red Lion router has an external cellular interface (ppp0) and an external Ethernet interface that is con‐
nected to a cable or DLS modem, and you need to bind the tunnel’s crypto endpoint to the Ethernet interface, you would
specify the IP address of the appropriate Ethernet interface here.
Note: If this value is omitted, it will be filled in automatically with the local address of the default route interface (as deter‐
mined at IPSEC startup time).
Local Source IP: Specify the Local IP Address to source when transmitting. The IP Address for this host to use when
transmitting a packet to the other side of this link. Relevant only locally, the other end need not agree. This option is
used to make the gateway itself use its internal IP, which is part of the left subnet or right. Otherwise, it will use its
nearest IP Address, which is its public IP Address.
This option is primarily used when defining subnet‐subnet connections, so that the gateways can talk to each other
and the subnet at the other, without the need to build additional host‐subnet, subnet‐host and host‐host tunnels.
Local Gateway IP Address: Specify the next‐hop gateway, IP address for the left participant’s connection to the public
network. Note: If no value is provided, the tunnel will use the right participant as its next hop.
Local Private Subnet(s): Specify the private subnet(s) behind the left participant, expressed in CIDR format
(xxx.xxx.xxx.xxx/nn) as network/netmask. More than one subnet can be specified by using a semi‐colon to separate
each entry.
Remote Public IP Address: Specify the IP address of Host name of the right participant’s public‐network interface. This
field is required if Client is selected as Tunnel Type. If “Server” or “Dynamic” is selected as Tunnel Type, and this field is
blank, then the value of %any will be used in the configuration file.
Remote Gateway IP Address: Specify the next hop gateway IP Address for the right participant’s connection to the
public network. Note: If no value is provided., the tunnel will use the left participant as it’s next hop.
Remote Private Subnet(s): Specify the private subnet(s) behind the right participant, expressed in CIDR format
(xx.xxx.xxx.xxx/nn) as network/netmask. More than one subnet can be specified by using a semi‐colon to separate
each entry.
•
Click on the Finish button. You will be returned to the IPSEC dialog window and the IPSEC Tunnels table will now
be populated with the recently entered data.
•
To delete an existing rule, select it in the table and click on the Delete button. To edit an existing rule, select it in
the table and click on the Edit button.
•
Click on the “Save” button for changes to be saved without activating the interface until you reboot the unit, the
“Apply” button will save your settings and apply them immediately. To revert to the previous defaults, click on the
“Revert” button.