beautypg.com

Chapter 4, Advanced configuration – Cisco 4-Port SSL/IPSec VPN Router RVL200 User Manual

Page 44

background image

Chapter 4

Advanced Configuration

4-Port SSL/IPSec VPN Router

FQDN) Authentication, Dynamic IP + Domain

Name(FQDN) Authentication, or Dynamic IP + E-

mail Addr.(USER FQDN) Authentication. Follow the

instructions for the type you want to use.

NOTE:

The Local Security Gateway Type you

select should match the Remote Security

Gateway Type selected on the VPN device at the

other end of the tunnel.

IP Only
The default is IP Only. Only the computer with a specific IP

address will be able to access the tunnel.

IP address

The WAN (or Internet) IP address of the Router

will automatically appear.
IP + Domain Name(FQDN) Authentication
The FQDN and IP address must match the Remote Security

Gateway of the remote VPN device, and they can only be

used for one tunnel connection.

Domain Name

Enter the Fully Qualified Domain Name

(FQDN), which is the host name and domain name for a

specific computer on the Internet.

IP address

The WAN (or Internet) IP address will

automatically appear.
IP + E-mail Addr.(USER FQDN) Authentication

E-mail address

Enter the e-mail address for

authentication.

IP address

The WAN (or Internet) IP address will

automatically appear.
Dynamic IP + Domain Name(FQDN) Authentication
The Local Security Gateway will be a dynamic IP address,

so you do not need to enter the IP address. When the

Remote Security Gateway requests to create a tunnel with

the Router, the Router will work as a responder.
The domain name must match the Remote Security

Gateway of the remote VPN device and can only be used

for one tunnel connection.

Domain Name

Enter the domain name for authentication.

(Once used, you cannot use it again to create a new tunnel

connection.)
Dynamic IP + E-mail Addr.(USER FQDN) Authentication
The Local Security Gateway will be a dynamic IP address,

so you do not need to enter the IP address. When the

Remote Security Gateway requests to create a tunnel with

the Router, the Router will work as a responder.

E-mail address

Enter the e-mail address for

authentication.

Local Security Group Type

Select the local LAN user(s) behind the Router that can

use this VPN tunnel. Select the type you want to use: IP,

Subnet, or IP Range. Follow the instructions for the type

you want to use.

NOTE:

The Local Security Group Type you select

should match the Remote Security Group Type

selected on the VPN device at the other end of

the tunnel.

After you have selected the Local Security Group Type, the

settings available on this screen may change, depending

on which selection you have made.
IP
Only the computer with a specific IP address will be able

to access the tunnel.

IP address

Enter the appropriate IP address. The default

IP is 9.8..0.
Subnet
The default is Subnet. All computers on the local subnet

will be able to access the tunnel.

IP address

Enter the IP address. The default is

9.8..0.

Subnet Mask

Enter the subnet mask. The default is

...0.
IP Range
Specify a range of IP addresses within a subnet that will be

able to access the tunnel.

IP range

Enter the range of IP addresses. The default is

9.8..0~4.

Remote Group Setup

Before you configure the Remote Group Setup, make

sure your VPN tunnel will have two different IP subnets.

For example, if the local 4-Port SSL/IPSec VPN Router has

an IP scheme of 192.168.1.x (x being a number from 1 to

254), then the remote VPN router should have a different

IP scheme, such as 192.168.2.y (y being a number from 1

to 254). Otherwise, the IP addresses will conflict, and the

VPN tunnel cannot be created.

Remote Security Gateway Type

Select the type you want to use: IP Only, IP + Domain

Name(FQDN) Authentication, IP + E-mail Addr.(USER

FQDN) Authentication, Dynamic IP + Domain

Name(FQDN) Authentication, or Dynamic IP + E-

mail Addr.(USER FQDN) Authentication. Follow the

instructions for the type you want to use.