Virtual private network (vpn) settings, Uses for vpn-enabled digi devices – Digi X2 User Manual
Page 99
9 9
C o n f i g u r e D i g i d e v i c e s
Virtual Private Network (VPN) settings
Virtual Private Networks (VPNs) are used to securely connect two private networks
together so that devices may connect from one network to the other network using secure
channels.VPN uses IP Security (IPSec) technology to protect the transferring of data over
the Internet Protocol (IP). All Digi Cellular Family products except Digi Connect WAN
support VPNs.
The Digi device is responsible for handling the routing between networks. Devices within
the private network served by the Digi device can connect directly to devices on the other
private network to which the VPN tunnel is established to. The VPN tunnels are
configured using various security settings and methods to ensure the networks are
secured.
Uses for VPN-enabled Digi devices
VPN-enabled Digi devices, such as Digi Connect WAN VPN, are cellular-enabled routers
that securely connect remote subnets using IPsec VPN technology. Devices in the Digi
device’s private network can connect directly to devices on the other private network with
which the VPN tunnel is established. You configure VPN tunnels using security settings
and methods to ensure the networks are secured.
The Digi device is used for primary or backup remote site connectivity. Secured IPsec
VPN traffic is typically routed from the Digi device over the cellular IP network and is
terminated by a VPN appliance at the host end.
A VPN-enabled Digi device can be used in several scenarios; for example:
As the primary remote site router where no other WAN router is used.
As a backup router where the remote site has a primary WAN connection
through DSL, Frame Relay, or other means.
To provide secure access to remote serial and/or Ethernet devices.
This section describes using a Digi device as a primary remote site router using IPsec
Encapsulated Security Payload (ESP) and Internet Key Exchange (IKE)/Internet Security
Association and Key Management Protocol (ISAKMP) pre-shared key methods.