IPsec VPN Settings

The AntiKor IPSec VPN module can operate in either IPsec Transport or IPsec Tunnel mode. The Phase1 and Phase2 settings of the created IPsec connection can be easily configured in a single screen, lists of access-authorized IP addresses, and the protocol to be used during transmission can be configured with a user-friendly interface.

image

IPsec VPN Settings New Record

image

IPsec VPN Accesses List

image

Click on the Accesses screen below. This screen controls IPsec VPN access.

image

IPsec VPN ACL New Record

image

FIELD DESCRIPTION
Source IP Enter source IP address for IPsec VPN ACL.
Destionation IP Enter destination IP address for IPsec VPN ACL.
Mode Enter mode for IPsec VPN ACL. (Transport or Tunnel)
Start Action Action to perform after loading the configuration.
Close Action Action to perform after a CHILD_SA gets closed by the peer.
Dead Peer Detection Action Action to perform for this CHILD_SA on DPD timeout.
IPComp Enable IPComp compression before encryption. If enabled, IKE tries to negotiate IPComp compression to compress ESP payload data prior to encryption.
Description Enter description.

Terminal Information

FIELD DESCRIPTION
Connection Name Enter connection name.
Status Choose either active or passive as status.
Source IP Enter source IPv4 address.
Destination IP Enter target IPv4 address.

ID Configuration

FIELD DESCRIPTION
Source ID Type Choose source ID type.
Source ID Enter source ID.
Target ID Type Choose target ID type.
Target ID Enter target ID.
Profiles
Field Description
Set Manually It is used for manual adjustment of Phase 1 and Phase 2 settings.
Use Profile It is used to adjust the phase 1 and phase 2 settings with the help of profile.
Choose Profile If Use Profile is selected, the previously ready profile must be selected.
Manually Set Over Profile It is used to manually set the selected profile.

Phase 1

FIELD DESCRIPTION
IKE Version Select Internet Key Exchange version.
Swap Mode Choose swap mode.
Encryption Algorithm Choose encryption algorithm to be used.
Hash Algorithm Choose hash algorithm to be used.
DH Group Choose DH group.
Authentication Method Choose authentication method.
Pre-shared Key Enter pre-shared key. (Authentication method if Pre-Shared Key is selected)
Certificate Choose Certificate. (Authentication method if Certificate is selected)
Peer Certificate Choose Peer Certificate.(Authentication method if Certificate is selected)

Phase 2

FIELD DESCRIPTION
PFS Group Choose PFS group.
Encryption Algorithm Choose encryption algorithm to be used.
Authentication Algorithm Choose authentication algorithm to be used.
Compression Algorithm Choose compression algorithm.

ePati Cyber Security Co.

Mersin Üniversitesi Çiftlikköy Kampüsü
Teknopark İdari Binası Kat:4 No: 411
Posta Kodu: 33343
Yenişehir / Mersin / TURKEY

Web: www.epati.com.tr
e-Mail: info@epati.com.tr
Tel: +90 324 361 02 33
Fax: +90 324 361 02 39