Lantronix EMG 8500 EMG User Guide - Page 121
Remote Peer, Remote Id, Remote Subnets, Remote Source IP, config, CIDR Notation, P Address Range
View all Lantronix EMG 8500 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 121 highlights
Remote Peer Remote Id Remote Subnet(s) Remote Source IP Local IP Address Local Id 7: Networking The IP address or FQDN of the remote host's public network interface. The special value of any can be entered to signify an address to be filled in by automatic keying during negotiation. The console manager will act as a responder/server. How the remote host should be identified for authentication. The Id is used to select the proper credentials for communicating with the remote host. One or more allowed subnets behind the remote host, expressed in CIDR notation (IP address/mask bits). If multiple subnets are specified, the subnets should be separated by a comma. Up to 10 local subnets supported. Configured subnets of the peers may differ, the protocol narrows it to the greatest common subnet. In IKEv1, this may lead to problems with other implementations. Make sure to configure identical subnets in such configurations. If the remote subnet is not defined, it will be assumed that the remote end of the connection goes to the remote peer only. The internal source IP to use in a tunnel(Virtual IP). Currently the accepted values are config, CIDR Notation, IP Address Range or poolname. If the value is config on the responder side, the initiator must propose an address which is then echoed back. The supported address pools are expressed as CIDR notation and IP Address range as - or the use of an external IP address pool using poolname is the name of the IP address pool used for the lookup. In the IP address of the EMG (local) side of the tunnel, specifically the public-network interface. If the IP address is not given, the value %any will be used in the ipsec.conf file (this is the default). It signifies that the IP address will be filled (by automatic keying) during negotiation. If EMG initiates the connection setup the routing table will be queried to determine the correct local IP address. In case the EMG is responding to a connection setup then any IP address that is assigned to a local interface will be accepted. For EMG with a cellular modem, if Local IP Address is configured to be the same as the IP address of the cellular modem acquired via DHCP; whenever the IP address of the cellular modem changes, the Local IP Address of the VPN tunnel will be automatically updated to be the same as the new cellular modem IP address. Note: This features is only available when the Tunnel Restart option is selected. If Local IP Address is set to the IP address of a network interface that acquires its IP address from DHCP, we recommend you to configure DHCP to always assign the same IP address to the interface. Otherwise, if the interface is assigned with a new IP address, the VPN tunnel will stop working. To fix this issue, you will have to update the Local IP Address and restart the tunnel. How the EMG should be identified for authentication. The Id is used by the remote host to select the proper credentials for communicating with the EMG. EMG™ Edge Management Gateway User Guide 121