| Line 13: |
Line 13: |
| | | file_ipsec_main_mode = Networking_device_vpn_ipsec_main_mode_scheme_v3.png | | | file_ipsec_main_mode = Networking_device_vpn_ipsec_main_mode_scheme_v3.png |
| | | file_ipsec_aggressive_mode = Networking_device_vpn_ipsec_aggressive_mode_scheme_v4.png | | | file_ipsec_aggressive_mode = Networking_device_vpn_ipsec_aggressive_mode_scheme_v4.png |
| | + | <!-------------------------------GRE Tunnel-----------------------------> |
| | + | | file_gre_config_main = Networking_rutxxx_vpn_gre_gre_configuration_main_settings_v1.png |
| | + | | file_gre_config_routing = Networking_rutxxx_vpn_gre_gre_configuration_routing_settings_v1.png |
| | }} | | }} |
| − |
| |
| − | ==GRE Tunnel==
| |
| − |
| |
| − | '''GRE''' (Generic Routing Encapsulation RFC2784) is a solution for tunneling RFC1812 private address-space traffic over an intermediate TCP/IP network such as the Internet. GRE tunneling does not use encryption it simply encapsulates data and sends it over the wide area network (WAN).
| |
| − |
| |
| − |
| |
| − | [[Image:Services vpn gre tunnel scheme.PNG]]
| |
| − |
| |
| − | In the example network diagram two distant networks LAN1 and LAN2 are connected. To create A GRE tunnel the user must know the following parameters:
| |
| − |
| |
| − | * Source and destination IP addresses
| |
| − | * Tunnel’s local IP address
| |
| − | * Distant network’s IP address and Subnet mask
| |
| − |
| |
| − | To create a new GRE instance, go to the GRE Tunnel tab, type in a name for your new instance in the text field below the GRE Tunnel tab and press the '''Add New''' button next to it.
| |
| − | The newly created instance will be disabled and unconfigured. To configure it press the '''Edit''' button located next to it. This action will redirect you to the instance’s GRE Tunnel Configuration window.
| |
| − |
| |
| − |
| |
| − | [[Image:Services vpn gre tunnel configuration.PNG]]
| |
| − |
| |
| − | <table class="nd-mantable">
| |
| − | <tr>
| |
| − | <th>field name</th>
| |
| − | <th>value</th>
| |
| − | <th>description</th>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Enabled</td>
| |
| − | <td>yes | no; Default: '''no'''</td>
| |
| − | <td>Toggles GRE Tunnel ON or OFF</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Remote endpoint IP address</td>
| |
| − | <td>ip; Default: " "</td>
| |
| − | <td>WAN IP address or hostname of the remote GRE Tunnel instance</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Remote network</td>
| |
| − | <td>integer [0..32]; Default: " "</td>
| |
| − | <td>LAN IP address of the remote device</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Remote network netmask</td>
| |
| − | <td>integer [0..32]; Default: " "</td>
| |
| − | <td>LAN netmask of the remote device</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Local tunnel IP</td>
| |
| − | <td>ip; Default: " "</td>
| |
| − | <td>Local virtual IP address. Can’t be in the same subnet as LAN network</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>MTU</td>
| |
| − | <td>integer [0..255]; Default: '''255'''</td>
| |
| − | <td>Toggles the Path Maximum Transmission Unit Discovery (PMTUD) status on this tunnel ON or OFF</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>TTL</td>
| |
| − | <td>integer [0..255]; Default: '''255'''</td>
| |
| − | <td>Fixed time-to-live (TTL) value on tunneled packets. The 0 is a special value meaning that packets inherit the TTL value</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>PMTUD</td>
| |
| − | <td>yes | no; Default: '''no'''</td>
| |
| − | <td>Toggles the Path Maximum Transmission Unit Discovery (PMTUD) status on this tunnel ON or OFF</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Redirect LAN to GRE</td>
| |
| − | <td>yes | no; Default: '''no'''</td>
| |
| − | <td>Redirects LAN traffic to the GRE interface</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Enable Keep alive</td>
| |
| − | <td>yes | no; Default: '''no'''</td>
| |
| − | <td>Gives the ability for one side to originate and receive keep alive packets to and from a remote router</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Keep Alive host</td>
| |
| − | <td>host | ip; Default: " "</td>
| |
| − | <td>Keep Alive IP address to send pings to. Preferably this should be an IP address which belongs to the LAN network on the remote device</td>
| |
| − | </tr>
| |
| − | <tr>
| |
| − | <td>Keep alive interval</td>
| |
| − | <td>integer [0..255]; Default: " "</td>
| |
| − | <td>Frequency at which ICMP packets are sent by the Keep Alive function (in seconds)</td>
| |
| − | </tr>
| |
| − | </table>
| |
| − |
| |
| − |
| |
| − | To find a more in-depth GRE Tunnel configuration example, visit '''[[GRE Tunnel configuration examples|this page]]
| |
| | | | |
| | ==PPTP== | | ==PPTP== |