beautypg.com

4 l2tp – NEXCOM IFA 1610 User Manual

Page 69

background image

Copyright © 2014 NEXCOM International Co., Ltd. All Rights Reserved.

IFA 3610/IFA 2610/IFA 1610 User Manual

Chapter 7: The VPN Menu

66

Roadwarrior virtual IP

The IP Address specified in the textfield will be assigned to the remote client.

Hint: This IP Address must fall within the pool defined in the IPsec settings below.

Note:

This option is available neither for L2TP Host-to-Net connections, as it is L2TP that takes charge of IP address

assignment to clients, nor for Net-to-Net connections.

Dead peer detection action

The action to perform if a peer disconnects. Available choices from the drop-down menu are to Clear, to Hold, or to

Restart the peer.

By clicking on the Advanced label, additional options are available, to choose and configure different types of encryption

algorithm. For every option, many types of algorithm can be chosen.

Note: It is necessary to change algorithm only in case some remote client uses a given algorithm and can not change it.

IKE encryption

The encryption methods that should be supported by IKE.

IKE integrity

The algorithms that should be supported to verify the integrity of packets.

IKE group type

The IKE group type.

IKE lifetime

How many hours are the IKE packets valid.

ESP encryption

The encryption methods that should be supported by the ESP.

ESP integrity

The algorithms that should be supported to verify the integrity of packets.

ESP group type

The ESP group type.

ESP lifetime

How many hours should an ESP key be valid.

Negotiate payload compression

Tick the checkbox to allow payload compression.

7.4 L2TP

L2TP, the Layer 2 Tunnelling Protocol, is described in RFC 2661.

To enable L2TP on the appliance, the switch next to the Enable L2TP label should be green. If it is grey, click on it to start

the service.

The following options are available to configure L2TP.

Zone

The zone to which the L2TP connections are directed. Only the activated zones can be chosen from the drop-down

menu.

L2TP IP pool start address, L2TP IP pool end address

The IP range from which L2TP users will receive an IP address when connecting to the appliance.

Enable debug

Tick this checkbox to let L2TP produce more verbose logs.

This manual is related to the following products:
See also other documents in the category NEXCOM Hardware: