Changes

Template:Networking rut manual vpn (view source)

Revision as of 11:10, 3 July 2019

4,652 bytes added ,  11:10, 3 July 2019
no edit summary
Line 709: Line 709:     
[[File:{{{file_ipsec_psk}}}]]
 
[[File:{{{file_ipsec_psk}}}]]
 +
 +
==GRE Tunnel==
 +
 +
<b>Generic Routing Encapsulation</b> (<b>GRE</b>) is a tunneling protocol used to establish point-to-point connections between remote private networks. GRE tunnels encapsulate data packets in order to route other protocols over IP networks.
 +
 +
===GRE: main & tunnel settings===
 +
----
 +
To create a new GRE Tunnel instance, go to the <i>Services → VPN → GRE Tunnel</i> section, enter a custom name and click the 'Add' button. A GRE instance with the given name will appear in the "GRE Configuration" list.
 +
 +
To begin configuration, click the 'Edit' button located next to the instance. Refer to the figure and table below for information on the fields located in the GRE Tunnel instance configuration section.
 +
 +
[[File:{{{file_gre_config_main}}}]]
 +
 +
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
    <td>Enabled</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Turns the GRE Tunnel instance on or off.</td>
 +
    </tr>
 +
    <tr>
 +
      <td>Tunnel source</td>
 +
      <td>network interface; default: <b>none</b></td>
 +
      <td>Network interface used to establish the GRE Tunnel.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Remote endpoint IP address</td>
 +
        <td>ip; default: <b>none</b></td>
 +
        <td>External IP address of another GRE instance used to establish the initial connection between peers.</td>
 +
    </tr>
 +
    <tr>
 +
      <td>MTU</td>
 +
      <td>integer; default: <b>1476</b></td>
 +
      <td>Sets the maximum transmission unit (MTU) size. It is the largest size of a protocol data unit (PDU) that can be transmitted in a single network layer transaction.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>TTL</td>
 +
        <td>integer [0..255]; default: <b>255</b></td>
 +
        <td>Sets a custom TTL (Time to Live) value for encapsulated packets. TTL is a field in the IP packet header which is initially set by the sender and decreased by 1 on each hop. When it reaches 0 it is dropped and the last host to receive the packet sends an ICMP "Time Exceeded" message back to the source.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Outbound key</td>
 +
        <td>integer [0..65535]; default: <b>none</b></td>
 +
        <td>Key for outgoing packets. This value should match the "Inbound key" value set on the opposite GRE instance or both key values should be omitted on both sides.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Inbound key</td>
 +
        <td>integer [0..65535]; default: <b>none</b></td>
 +
        <td>Key for incoming packets. This value should match the "Outbound key" value set on the opposite GRE instance or both key values should be omitted on both sides.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Don't fragment</td>
 +
        <td>yes | no; default: <b>yes</b></td>
 +
        <td>When unchecked, sets the <i>nopmtudisc</i> option for tunnel. Can not be used together with the TTL option.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Keep alive</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Turns "keep alive" on or off. The "keep alive" feature sends packets to the remote instance in order to determine the health of the connection. If no response is received, the device will attempt to re-establish the tunnel.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Keep alive interval</td>
 +
        <td>integer [0..255]; default: <b>none</b></td>
 +
        <td>Frequency (in seconds) at which "keep alive" packets are sent to the remote instance.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Local GRE interface IP address</td>
 +
        <td>ip; default: <b>none</b></td>
 +
        <td>IP address of the local GRE Tunnel network interface.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Local GRE interface netmask</td>
 +
        <td>netmask; default: <b>none</b></td>
 +
        <td>Subnet mask of the local GRE Tunnel network interface.</td>
 +
    </tr>
 +
</table>
 +
 +
===GRE: routing settings===
 +
----
 +
<b>Routing settings</b> are used to configure routes to networks that are behind the device that hosts the opposite GRE instance. To add a new route, simply click the 'Add' button. For information on configuring the route refer to the figure and table below.
 +
 +
[[File:{{{file_gre_config_routing}}}]]
 +
 +
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
    <td>Remote subnet IP address</td>
 +
        <td>ip; default: <b>none</b></td>
 +
        <td>IP address of the network behind the device that hosts the remote GRE instance.</td>
 +
    </tr>
 +
    <tr>
 +
    <td>Remote subnet netmask</td>
 +
        <td>netmask; default: <b>none</b></td>
 +
        <td>Subnet mask of the network behind the device that hosts the remote GRE instance.</td>
 +
    </tr>
 +
</table>
Retrieved from "https://wiki.teltonika-networks.com/view/Special:MobileDiff/38759"

Navigation menu