![CONEL SPECTRE v3 ERT — настройка IPsec туннелей: параметры и рекомендации [71/136]](/icons/site-icon-64.png){kind=icon}
CONEL SPECTRE v3 ERT — настройка IPsec туннелей: параметры и рекомендации [71/136]
Превью страниц
Страница 71 /
136
![CONEL SPECTRE v3 ERT [71/136] Configuration](/views2/1190478/page71/bg47.png)
4. CONFIGURATION
Continued from previous page
Item Description
Remote Subnet Mask Subnet mask of a network behind remote side of the tunnel.
Remote Protocol/Port Specifies Protocol/Port of remote side of the tunnel. The general
form is protocol/port, for example 17/1701 for UDP (protocol 17)
and port 1701. It is also possible to enter only the number of
protocol, however, the above mentioned format is preferred.
Local ID Identifier (ID) of local side of the tunnel. It consists of two parts:
a hostname and a domain-name.
Local Subnet IP address of a local network.
Local Subnet Mask Subnet mask of a local network.
Local Protocol/Port Specifies Protocol/Port of a local network. The general form is
protocol/port, for example 17/1701 for UDP (protocol 17) and
port 1701. It is also possible to enter only the number of protocol,
however, the above mentioned format is preferred.
Encapsulation Mode Specifies the IPsec mode, according to the method of encap-
sulation. You can select the tunnel mode in which the entire IP
datagram is encapsulated or the transport mode in which only IP
header is encapsulated.
NAT traversal Enable/disables NAT address translation on the tunnel. If you
use NAT between the end points of the tunnel, then enable this
parameter.
IKE Mode Specifies the mode for establishing a connection (main or ag-
gressive). If you select the aggressive mode, then the router es-
tablishes the IPsec tunnel faster, but the encryption is perma-
nently set to 3DES-MD5. We recommend that you not use the
aggressive mode due to lower security!
IKE Algorithm Specifies the means by which the router selects the algorithm:
• auto – The encryption and hash algorithm are selected au-
tomatically.
• manual – The encryption and hash algorithm are defined
by the user.
IKE Encryption Encryption algorithm – 3DES, AES128, AES192, AES256.
IKE Hash Hash algorithm – MD5, SHA1, SHA256, SHA384 or SHA512.
Continued on next page
62
Содержание
233- Firmware version
- Used symbols
- Gpl licence
- Contents
- Contents
- List of figures
- List of figures
- List of figures
- List of tables
- List of tables
- Standard equipment
- Optional features
- Basic information
- Advantages in relation to v2 concept
- This configuration manual describes
- Configuration options
- Configuration
- Basic information
- Access to the web configuration
- Access to the web conf
- Preventing the domain disagreement message
- Access to the web conf
- Status
- Mobile connection
- General status
- Status
- Primary lan secondary lan tertiary lan wifi
- Peripheral ports
- System information
- Status
- Status
- Mobile wan status
- Status
- Status
- Status
- Wifi scan
- Status
- Status
- Status
- Network status
- Status
- Status
- Dhcp status
- Status
- Ipsec status
- Dyndns status
- System log
- Status
- Status
- Lan configuration
- Lan configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Vrrp configuration
- Vrrp configuration
- Configuration
- Configuration
- Configuration
- Mobile wan configuration
- Mobile wan configuration
- Connection to mobile network
- Configuration
- Configuration
- Dns address configuration
- Dns address configuration
- Configuration
- Check connection to mobile network configuration
- Check connection to mobile network configuration
- Switch between sim cards configuration
- Switch between sim cards configuration
- Data limit configuration
- Data limit configuration
- Configuration
- Configuration
- Pppoe bridge mode configuration
- Pppoe bridge mode configuration
- Configuration
- Configuration
- Configuration
- Pppoe configuration
- Pppoe configuration
- Configuration
- Wifi configuration
- Wifi configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Wlan configuration
- Wlan configuration
- Configuration
- Configuration
- Configuration
- Backup routes
- Configuration
- Firewall configuration
- Firewall configuration
- Configuration
- Configuration
- Example of the firewall configuration
- Configuration
- Configuration
- Nat configuration
- Configuration
- Nat configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Openvpn tunnel configuration
- Openvpn tunnel configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Ipsec tunnel configuration
- Ipsec tunnel configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Gre tunnels configuration
- Gre tunnels configuration
- Configuration
- Configuration
- Configuration
- L2tp tunnel configuration
- L2tp tunnel configuration
- Configuration
- Configuration
- Pptp tunnel configuration
- Pptp tunnel configuration
- Configuration
- Configuration
- Dyndns configuration
- Dyndns configuration
- Configuration
- Ntp configuration
- Ntp configuration
- Configuration
- Snmp configuration
- Snmp configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Smtp configuration
- Smtp configuration
- Configuration
- Configuration
- Sms configuration
- Sms configuration
- Configuration
- Configuration
- Sending sms
- Configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Expansion port configuration
- Expansion port configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Usb port configuration
- Usb port configuration
- Configuration
- Configuration
- Configuration
- Configuration
- Startup script
- Configuration
- Up down script
- Configuration
- Configuration
- Automatic update configuration
- Automatic update configuration
- Configuration
- Customization
- User modules
- Customization
- Administration
- Change profile
- Change profile
- Administration
- Set real time clock
- Change password
- Administration
- Unlock sim card
- Set sms service center address
- Administration
- Restore configuration
- Backup configuration
- Backup configuration
- Administration
- Send sms
- Restore configuration
- Update firmware
- Administration
- Reboot
- Administration
- Configuration in typ situations
- Configuration in typ situations
- Access to the internet from lan
- Configuration in typ situations
- Configuration in typ situations
- Backup access to the internet from lan
- Configuration in typ situations
- Configuration in typ situations
- Configuration in typ situations
- Configuration in typ situations
- Secure networks interconnection or using vpn
- Configuration in typ situations
- Serial gateway
- Configuration in typ situations
- Configuration in typ situations
- Glossary and acronyms
- Glossary and acronyms
- Glossary and acronyms
- Glossary and acronyms
- Glossary and acronyms
- Recommended literature
Похожие устройства
-
CONEL CGU 04iИнструкция по эксплуатации -
CONEL CDX 800Инструкция по эксплуатации -
CONEL CDA 70Технические характеристики -
CONEL CDA 70Инструкция по эксплуатации -
CONEL XR5i v2EРуководство по конфигурации -
CONEL XR5i v2EТехнические характеристики -
CONEL XR5i v2EРуководство по подключению -
CONEL XR5i v2EИнструкция по эксплуатации
-
CONEL XR5i v2FТехнические характеристики
-
CONEL XR5i v2FРуководство по конфигурации
-
CONEL XR5i v2FИнструкция по эксплуатации
-
CONEL CR10 v2Руководство по подключению
Узнайте о ключевых параметрах настройки IPsec туннелей, включая маски подсетей, режимы шифрования и алгоритмы. Обеспечьте безопасность вашей сети.
