Lantronix X300 Series X300 Series User Guide Rev B - Page 80

9: VPN Parameters DH Group Description Select the desired Diffie-Hellman group to use:  Any  Group 1 (768)  Group 2 (1024)  Group 5 (1536)  Group 14 (2048)  Group 15 (3072)  Group 16 (4096)  Group 17 (6144)  Group 18 (8192) Higher-numbered groups are more secure but also require longer to generate the key. The default group is "Any". DPD Keep Alive Time Enter the time in seconds for interval between Dead Peer Detection keep alive messages. DPD Timeout Enter the time in seconds of no response from peer before Dead Peer Detection times out. IKE Re-key Time Enter the time in seconds between changes of the encryption key. To disable changing the key, set it to 0. SA Life Time Enter the time in seconds for the security association lifetime. DPD Action Select the desired Dead Peer Detection action. This action must be taken when a dead IKE peer is detected. 4. Click Save. The instance is saved and displayed on the IPsec page. 5. After configuring the profile, click Connect to start the IPsec connection for the first time. OpenVPN VPN > OpenVPN OpenVPN is an open-source software application that implements virtual private network (VPN) techniques for creating secure point-to-point or site-to-site connections. It uses the OpenSSL library to provide encryption of both the data and control channels. OpenVPN can run over UDP or TCP transports, multiplexing created SSL tunnels on a single TCP/UDP port. OpenVPN fully supports IPv6 as the protocol of the virtual network inside a tunnel and the OpenVPN applications can also establish connections via IPv6. It has the ability to work through most proxy servers (including HTTP) and is good at working through network address translation (NAT) and getting out through firewalls. The server configuration has the ability to push certain network configuration options to the clients, including IP addresses, routing commands, and a few connection options. The X300 series gateways support OpenVPN client, server, and pass through. OpenVPN Instances The OpenVPN client will attach itself to the configured OpenVPN server over any available WAN, LAN, or Cellular network interface. If the auto-connect function is enabled, OpenVPN will connect over available WAN, switch between WAN connections when one WAN fails-over to another, and also auto start on every reboot. X300 Series IoT Cellular Gateway User Guide 80