Figure 10 – H3C Technologies H3C SecPath F1000-E User Manual

9

Figure 10 IPsec VPN policy configuration wizard: 2/4 (peer node)

Step2

Configure the items on the page.

Table 5

describes the configuration items.

Table 5 Configuration items on a peer node: 2/4

Item

Description

IPSec VPN Name

Type the name for the IPsec VPN.

IMPORTANT:

If you type abc here, the wizard will create an IKE peer named abc_peer, an
IPsec proposal named abc_prop, an IPsec policy named abc_poli and
numbered 1, and an IKE proposal numbered 1. The IKE peer and IPsec
proposal will be referenced in the IPsec policy.

IPSec Interface

Select the interface to which you want to apply the IPsec policy.

Remote IP Address

Type the remote IP address for IKE negotiation.

IMPORTANT:

The IP address specified here must match the local IP address specified on
the peer.

Local IP
Address

Identity
Configuration

Local
Gateway

Name

Specify the ID type of the local end for IKE negotiation phase 1, which can be
one of the following:

•

Local IP address: Uses the IP address of the local gateway as the ID. If you do
not specify the IP address, the default (the primary IP address of the interface
using the security policy) is used.

•

Local gateway name: Uses the name of the local gateway as the ID. As the
peer node uses the negotiation mode of main, the local end cannot use its

local gateway name for IKE negotiation. Therefore, this option is not
available.