Ipsectunnel – Amer Networks E5 CLI User Manual

3.61. IPsecTunnel

Description

An IPsec tunnel item is used to define IPsec endpoint and will appear as a logical interface in the
system.

Properties

Index

The index of the object, starting at 1. (Identifier)

Name

Specifies a symbolic name for the interface.
(Identifier)

LocalNetwork

The network on "this side" of the IPsec tunnel. The
IPsec tunnel will be established between this
network and the remote network.

RemoteNetwork

The network connected to the remote gateway.
The IPsec tunnel will be established between the
local network and this network.

RemoteEndpoint

Specifies the IP address of the remote endpoint.
This is the address the security gateway will
establish the IPsec tunnel to. It also dictates from
where

inbound

IPsec

tunnels

are

allowed.

(Optional)

IKEConfigModePool

Selects IKE Config Mode Pool to use for the tunnel.
(Optional)

IKEAlgorithms

Specifies the IKE Proposal list used with the tunnel.
(Default: High)

IPsecAlgorithms

Specifies the IPsec Proposal list used with the
tunnel. (Default: High)

IKELifeTimeSeconds

The lifetime of the IKE connection in seconds.
Whenever it expires, a new phase-1 exchange will
be performed. (Default: 28800)

IPsecLifeTimeSeconds

The lifetime of the IPsec connection in seconds.
Whenever it's exceeded, a re-key will be initiated,
providing new IPsec encryption and authentication
session keys. (Default: 3600)

IPsecLifeTimeKilobytes

The lifetime of the IPsec connection in kilobytes.
(Default: 0)

EncapsulationMode

Specifies if the IPsec tunnel should use Tunnel or
Transport mode. (Default: Tunnel)

AuthMethod

Certificate or Pre-shared key. (Default: PSK)

PSK

Selects the Pre-shared key to use with this IPsec
Tunnel.

LocalIDType

Selects the type of Local ID to use. (Default: Auto)

Chapter 3: Configuration Reference

183