Next: SSL Up: IPSec Previous: Top Menu Contents
In this page we have configured the IPSec connection (As you may see in Figure 4.15). The following data are necessary:
Local Network Definitions
Local IP: Public address in local network;
Local Network: Local network address and its network mask;
Local Gateway: Router internal interface address from local network;
Local Identifier: It could be an identifying string (by default, this field must be empty!);
Server IP in local network: IPBrick's internal interface address.
Remote Network Definitions
Remote IP: Public address of the remote network;
Remote Network: The remote network address and the respective network mask;
Remote Gateway: Router internal interface address from remote network(by default, this field must be empty!);
Remote identifier: It could be an identifying string (by default, this field must be empty!).
Keys Management
Password: A Pre-Shared Key is a shared key that the VPN service expects as a first credential (before username and password). In order that the VPN server allows the authentication process to continue, it is necessary to pass the correct PSK;
Type: The IPSec supplies two operation methods specified in this field, which are Tunnel (where the original IP pack is encrypted) and Transport (the data (payload) are encrypted, but the original IP heading is not changed);
Authentication: IPSec adds two extra headers to the IP package - AH and ESP. The AH (Authentication Header) insures integrity and authenticity, but not confidentiality. ESP provides data integrity, authenticity and confidentiality;
PFS4.5: Allows to indicate if one intends or not to use PFS;
Startup: Only automatic is available.
PFS4.5