![Planet CS-1000 [95/226] Ipsec autokey](/img/pdf.png)
Planet CS-1000 [95/226] Ipsec autokey
![Planet CS-1000 [95/226] Ipsec autokey](/views2/1071684/page95/bg5f.png)
Multi-Homing Security Gateway User’s Manual
3.3.8 VPN
The CS-1000 adopts VPN to set up safe and private network service, and combine the remote Authentication
system in order to integrate the remote network and PC of the enterprise. It also provides the remote users a
safe encryption way to have best efficiency and encryption when delivering data. CS-1000 provides two kinds
of VPN service and the PPTP client.
IPSec Autokey: The system manager can create a VPN connection using Autokey IKE. Autokey IKE
(Internet Key Exchange) provides a standard method to negotiate keys between two security gateways. It
also can set up IPSec Lifetime and Preshared Key of the CS-1000.
PPTP Server: The System Manager can set up VPN-PPTP Server functions at CS-1000 in this chapter.
PPTP Client: The System Manager can set up VPN-PPTP Client functions at CS-1000 in this chapter.
Trunk: To define local and remote VPN device with related information, it also can be configured to enable
VPN Trunk function. Trunk entry must be selected in Policy to submit the further function to the VPN traffic.
What is New?
CS-1000 isolates the Trunk setting in order to allow Policy rule controlling VPN traffic. So user can filter the
VPN packets with QoS, IDP rule, and record the connection in Traffic Log or Statistic. Hence, to set up a
Virtual Private Network (VPN), you need to configure CS-1000 with following setting:
1. Configure IPSec Autokey for the encryption and authentication or PPTP Server/Client setting.
2. Configure Trunk for the information of local and remote VPN device.
3. Configure Policy rule to combine VPN traffic with QoS, IDP and the other function.
3.3.8.1 IPSec Autokey
This chapter describes steps to create a VPN connection using Autokey IKE. Autokey IKE (Internet Key
Exchange) provides a standard method to negotiate keys between two security gateways. For example, with
two Multi-Homing Security Gateway devices, IKE allows new keys to be generated after a set amount of time
has passed or a certain threshold of traffic has been exchanged.
Accessing the Autokey IKE window
Click IPSec Autokey under the VPN menu to enter the IPSec Autokey window. The IPSec Autokey table
displays current configured VPNs.
ÍÍ
- 89 -
Содержание
- Cs 1000 1
- Multi homing security gateway 1
- User s manual 1
- Ce mark warning 2
- Copyright 2
- Customer service 2
- Disclaimer 2
- Multi homing security gateway user s manual 2
- Revision 2
- Trademarks 2
- Table of contents 4
- Chapter 1 introduction 7
- Features 7
- Package contents 8
- Multi homing security gateway front view 9
- Multi homing security gateway rear panel 9
- Specification 9
- Chapter 2 getting started 11
- Step 1 11
- Step 2 11
- Web configuration 11
- Configure wan1 interface 12
- Configure dmz interface 13
- Configure wan2 interface 13
- Configure policy 14
- Step 1 14
- Step 2 14
- Step 3 14
- Step 4 15
- Administration 16
- Chapter 3 web configuration 16
- Configure 16
- System 16
- Logout 17
- Permitted ips 19
- Setting 21
- Software update 21
- Date time 26
- Multiple subnet 27
- Route table 32
- Dynamic dns 35
- Host table 37
- Language 39
- Interface 40
- Logout 40
- Address 46
- How to use address table 46
- Policy object 46
- Lan group 48
- Wan group 53
- Dmz group 58
- Service 60
- Pre defined 61
- Custom 62
- Schedule 66
- Auth setting 72
- Authentication 72
- Auth user 73
- Auth group 76
- Radius serve 79
- Content blocking 81
- Url blocking 81
- Scripts 83
- Download 85
- Upload 86
- Virtual server 87
- Mapped ip 88
- Virtual server 90
- Ipsec autokey 95
- Pptp server 98
- Pptp client 101
- Configuration of cs 1000 113
- Configuration of winxp 116
- Outgoing 164
- Policy 164
- Incoming 168
- Wan to dmz lan to dmz 172
- Dmz to wan dmz to lan 175
- Mail security 179
- Configure 180
- Anti spam 183
- Setting 184
- Whitelist 188
- Blacklist 190
- Training 193
- Anti virus 199
- Setting 199
- Spam mail 199
- Virus mail 200
- Setting 201
- Signature 202
- Idp report 205
- Anomaly flow ip 206
- Monitor 207
- Traffic 207
- Connection 211
- Log backup 212
- Log mail configuration enable log mail support 213
- Accounting report 214
- Setting 214
- Outbound 215
- Inbound 218
- Statistic 220
- Wan statistics 221
- Policy statistics 222
- Time viewable by minutes hours days week month and year 222
- Interface status 223
- Status 223
- Authentication 224
- Arp table 225
- Dhcp clients 225
Похожие устройства
- Singer BRILLIANCE 6160 Инструкция по эксплуатации
- Planet CS-2000 Инструкция по эксплуатации
- Alienware x51-4910 Инструкция по эксплуатации
- Singer FASHION MATE 7256 Инструкция по эксплуатации
- Planet DKVM-1700 Инструкция по эксплуатации
- HP Omni 27-1000er H1F63EA Инструкция по эксплуатации
- Singer LIMITED EDITION 160 Инструкция по эксплуатации
- Planet IKVM-8000 Инструкция по эксплуатации
- Samsung S24B300BL Инструкция по эксплуатации
- Singer PROMISE 1408 Инструкция по эксплуатации
- Planet KVM-201 Инструкция по эксплуатации
- Samsung GT-P3100 8Gb Silver Инструкция по эксплуатации
- Singer TRADITION 2250 Инструкция по эксплуатации
- Planet KVM-401 Инструкция по эксплуатации
- Samsung GT-P3100 8Gb White Инструкция по эксплуатации
- Singer SIMPLE 3223 Инструкция по эксплуатации
- Planet KVM-210 Инструкция по эксплуатации
- Juki HZL-27Z Инструкция по эксплуатации
- Planet KVM-410 Инструкция по эксплуатации
- Merrylock 006 Инструкция по эксплуатации