IPSec Connection Properties Help

The page IPSec Connection Properties serves to specify the members of the IPSec tunnel and to set the basic parameters for the encryption.

First, please select with the radio buttons Dynamic IP/Road Warrior and Static IP/Gateway whether the remote Quadro (or another VPN gateway device)  is connected to the Internet with a dynamic IP address and acts as a Road Warrior (and if you simply don't know its IP address), or is connected to the Internet with a fixed IP address (that you know). The fixed IP address or the hostname of that remote VPN Gateway has to be entered into the text field Remote Gateway. The IP-Clipboard buttons facilitates entering the IP address by listing the last 10 entered IP addresses to be selected. If Dynamic IP/Road Warrior is selected, the text field will automatically be disabled to allow access independent from the sending IP address.

The following checkboxes serve to specify the dimension of the IPSec connection:

• Quadro <> Remote Gateway allows access from the local Quadro to the remote VPN gateway (local subnet and remote subnet not included). This includes encrypted management access and allows e.g. encrypted telephony via the POTS ports of Quadro. Checkbox is disabled when "Quadro<>NAT<>[Internet]<>Peer" or "Quadro<>[Internet]<>NAT<>Peer" is selected from the VPN Network Topology drop down list on the first page of the IPSec Connection Wizard.
• Local Subnet <> Remote Gateway allows access from all stations connected in the local network to the remote VPN gateway device (local Quadro and remote subnet are not included). The checkbox is disabled when "Quadro<>[Internet]<>NAT<>Peer" is selected from the VPN Network Topology drop down list on the first page of the IPSec Connection Wizard.
  Note: Static IP/ Remote Gateway selection is not possible if this Gateway is positioned behind NAT, since the IP-address of the remote gateway is not reachable directly in this case.
• Quadro <> Remote Subnet allows access from the local Quadro to all stations of the remote LAN (local subnet and remote VPN gateway device are not included). The checkbox is disabled when "Quadro<>NAT<>[Internet]<>Peer" is selected from the VPN Network Topology drop down list on the first page of the IPSec Connection Wizard.
• Local Subnet <> Remote Subnet allows access from all stations of the local network to all stations of the remote local network (VPN gateway devices are not included). In this case the local and remote subnet IP addresses and subnet masks have to be entered in the corresponding text fields Local Subnet IP and Remote Subnet IP.

More than one of the checkboxes mentioned above may be selected to add the explained relations of communication.

The checkbox Stop Connection if not successful allows you to stop the IPSec connection attempts, if the partner is still unreachable after a timeout in 5 minutes. If the checkbox is not selected, the system will continue to try to reach the IPSec connection partner.