ProSoft Technology ICX30-HWC User Manual
Page 31
ICX30-HWC ♦ Industrial Cellular Gateway
Configuration Webpage
3G Cellular (M2M)
User Manual
ProSoft Technology, Inc.
Page 31 of 64
June 22, 2015
VPN Tunnel (IPSEC)
VPN Tunnel Internet Protocol Security (IPSEC). It consists of protocol(s) used for
authentication and encryption.
VPN Tunnel (IPSEC)
Description
Gateway/Client
Disable, Client, or Gateway
Local Group
(Client mode) ICX30-HWC connects to a remote VPN server.
LAN Subnet + USER FQDN, LAN Subnet + FQDN
(Gateway mode) ICX30-HWC acts as a VPN server. IP +
LAN Subnet
Local Group FQDN (User FQDN)
(Client mode only) Local group Fully Qualified Domain
Name (FQDN) is user-defined. Ex. User_test1
Remote Group
(Client mode) IP + LAN Subnet
(Gateway mode) Dynamic IP + USER FQDN, Dynamic IP +
FQDN
Remote IP
(Client mode only) WAN IP address of gateway/ICX30-HWC
Remote Group IP
LAN IP address of gateway/ICX30-HWC. Only the first two
octets are needed. Ex. XXX.YYY.0.0
Remote Group Subnet
255.255.255.0
Remote Group FQDN
(Gateway mode only) Remote group Fully Qualified Domain
Name (FQDN) is user-defined. Ex. User_test1
Aggressive Mode
On
Pre-Shared Key
Key to connect in either mode
Phase 1 and 2 DH Group
MODP1024 or MODP1536
Phase 1 Encryption
DES, 3DES, AES192, or AES256
Phase 1 Authentication
MD5 or SHA1
Phase 2 Encryption
DES, 3DES, AES192, or AES256
Phase 2 Authentication
MD5 or SHA1
VPN Tunnel (Open VPN)
The Virtual Private Network (VPN) Tunnel allows you to access a private local
network through the ICX30-HWC. The DHCP (LAN) must be enabled when using
the VPN Tunnel.
VPN Tunnel (OpenVPN)
Description
Server/Client
Disable or Client
Interface Type
Network Tunnel (TUN)
Protocol
TCP or UDP
Authorization
Disable Transport Layer Security (TLS) authorization
Encryption Cipher
None, Use Default, AES-128-CBC, AES-192-CBC, or AES-256-CBC
TLS Renegotiation Time
Transport Layer Security renegotiation time in seconds
LZO Compression
Disabled, None, Enabled, Adaptive