Chapter 4, Advanced configuration – Cisco 4-Port SSL/IPSec VPN Router RVL200 User Manual
Page 44
Chapter 4
Advanced Configuration
4-Port SSL/IPSec VPN Router
FQDN) Authentication, Dynamic IP + Domain
Name(FQDN) Authentication, or Dynamic IP + E-
mail Addr.(USER FQDN) Authentication. Follow the
instructions for the type you want to use.
NOTE:
The Local Security Gateway Type you
select should match the Remote Security
Gateway Type selected on the VPN device at the
other end of the tunnel.
IP Only
The default is IP Only. Only the computer with a specific IP
address will be able to access the tunnel.
IP address
The WAN (or Internet) IP address of the Router
will automatically appear.
IP + Domain Name(FQDN) Authentication
The FQDN and IP address must match the Remote Security
Gateway of the remote VPN device, and they can only be
used for one tunnel connection.
Domain Name
Enter the Fully Qualified Domain Name
(FQDN), which is the host name and domain name for a
specific computer on the Internet.
IP address
The WAN (or Internet) IP address will
automatically appear.
IP + E-mail Addr.(USER FQDN) Authentication
E-mail address
Enter the e-mail address for
authentication.
IP address
The WAN (or Internet) IP address will
automatically appear.
Dynamic IP + Domain Name(FQDN) Authentication
The Local Security Gateway will be a dynamic IP address,
so you do not need to enter the IP address. When the
Remote Security Gateway requests to create a tunnel with
the Router, the Router will work as a responder.
The domain name must match the Remote Security
Gateway of the remote VPN device and can only be used
for one tunnel connection.
Domain Name
Enter the domain name for authentication.
(Once used, you cannot use it again to create a new tunnel
connection.)
Dynamic IP + E-mail Addr.(USER FQDN) Authentication
The Local Security Gateway will be a dynamic IP address,
so you do not need to enter the IP address. When the
Remote Security Gateway requests to create a tunnel with
the Router, the Router will work as a responder.
E-mail address
Enter the e-mail address for
authentication.
Local Security Group Type
Select the local LAN user(s) behind the Router that can
use this VPN tunnel. Select the type you want to use: IP,
Subnet, or IP Range. Follow the instructions for the type
you want to use.
NOTE:
The Local Security Group Type you select
should match the Remote Security Group Type
selected on the VPN device at the other end of
the tunnel.
After you have selected the Local Security Group Type, the
settings available on this screen may change, depending
on which selection you have made.
IP
Only the computer with a specific IP address will be able
to access the tunnel.
IP address
Enter the appropriate IP address. The default
IP is 9.8..0.
Subnet
The default is Subnet. All computers on the local subnet
will be able to access the tunnel.
IP address
Enter the IP address. The default is
9.8..0.
Subnet Mask
Enter the subnet mask. The default is
...0.
IP Range
Specify a range of IP addresses within a subnet that will be
able to access the tunnel.
IP range
Enter the range of IP addresses. The default is
9.8..0~4.
Remote Group Setup
Before you configure the Remote Group Setup, make
sure your VPN tunnel will have two different IP subnets.
For example, if the local 4-Port SSL/IPSec VPN Router has
an IP scheme of 192.168.1.x (x being a number from 1 to
254), then the remote VPN router should have a different
IP scheme, such as 192.168.2.y (y being a number from 1
to 254). Otherwise, the IP addresses will conflict, and the
VPN tunnel cannot be created.
Remote Security Gateway Type
Select the type you want to use: IP Only, IP + Domain
Name(FQDN) Authentication, IP + E-mail Addr.(USER
FQDN) Authentication, Dynamic IP + Domain
Name(FQDN) Authentication, or Dynamic IP + E-
mail Addr.(USER FQDN) Authentication. Follow the
instructions for the type you want to use.