Teltonika Networks Wiki

Changes

Template:Networking rut2xx manual vpn ipsec (view source)

Revision as of 08:48, 19 August 2021

1,137 bytes added ,  08:48, 19 August 2021
no edit summary
Line 9: Line 9:  
The <b>IPsec configuration</b> section is used to configure the main parameters of an IPsec connection. Refer to the figure and table below for information on the configuration fields located in the general settings section.
 
The <b>IPsec configuration</b> section is used to configure the main parameters of an IPsec connection. Refer to the figure and table below for information on the configuration fields located in the general settings section.
   −
[[File:{{{file_ipsec_config}}}]]
+
[[File:{{{file_ipsec_config}}}|border|class=tlt-border]]
    
<table class="nd-mantable">
 
<table class="nd-mantable">
Line 78: Line 78:  
             </ul>
 
             </ul>
 
         </td>
 
         </td>
 +
    </tr>
 +
    <tr>
 +
      <td>Ignore security</td>
 +
      <td>yes | no; default: <b>no</b></td>
 +
      <td>If enabled responders are allowed to use IKEv1 Aggressive Mode with pre-shared keys. Discouraged to use due to security concerns.</td>
 +
    </tr>   
 +
    <tr>
 +
      <td>Use additional xauth authentification</td>
 +
      <td><span style="color:tomato; font-weight:bold;">yes</span> | no; default: <b>no</b></td>
 +
      <td>Turns additional xauth authentification for this instance on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td><span style="color:tomato; font-weight:bold;">Xauth password</span></td>
 +
        <td>string; default: <b>none</b></td>
 +
        <td>Password for xauth.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
Line 148: Line 163:  
         <td>ip/netmask; default: <b>none</b></td>
 
         <td>ip/netmask; default: <b>none</b></td>
 
         <td>Remote network IP address and subnet mask used to determine which part of the network can be accessed in the VPN network. Netmask range [0..32]. This value must differ from the device’s LAN IP</td>
 
         <td>Remote network IP address and subnet mask used to determine which part of the network can be accessed in the VPN network. Netmask range [0..32]. This value must differ from the device’s LAN IP</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Passthrough networks</td><td>None | LAN | Wired | WiFi | Mobile | custom; default: '''none'''</td>
 +
        <td>Select networks which should be passthrough and excluded from routing through tunnel</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
Line 158: Line 177:  
         <td>yes | no; default: <b>no</b></td>
 
         <td>yes | no; default: <b>no</b></td>
 
         <td>Allows WebUI access for hosts in the VPN network</td>
 
         <td>Allows WebUI access for hosts in the VPN network</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Compatibility mode</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Enable this if multiple subnets do not work with a 3rd party IPsec peer.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
Retrieved from "https://wiki.teltonika-networks.com/view/Special:MobileDiff/72316...83981"