General Settings
Advanced
Basic
Connection Name
Nailed-Up
Enable Replay Detection
Enable NetBIOS broadcast over IPSec
VPN Gateway
Advanced
Basic
Static
Site-to-site
----- Create Object -----
Dynamic
Site-to-site with Dynamic Peer
----- Create Object -----
Default_L2TP_VPN_GW
Remote Access
----- Create Object -----
Default_L2TP_VPN_GW
Manual Key
Manual Key
My Address
Secure Gateway Address
SPI
(256 - 4095)
Encapsulation Mode
Tunnel
Transport
Active Protocol
ESP
AH
Encryption Algorithm
DES
3DES
AES128
AES192
AES256
NULL
Authentication Algorithm
MD5
SHA1
Encryption Key
Authentication Key
Policy
Advanced
Basic
Local policy
----- Create Object -----
LAN1_SUBNET
LAN2_SUBNET
DMZ_SUBNET
address1
Remote policy
----- Create Object -----
LAN1_SUBNET
LAN2_SUBNET
DMZ_SUBNET
address1
Policy Enforcement
Phase 2 Settings
Advanced
Basic
SA Life Time
(180 - 3000000 Seconds)
Active Protocol
ESP
AH
Encapsulation
Tunnel
Transport
Proposal
#
Encryption
Authentication
1
DES
3DES
AES128
AES192
AES256
NULL
MD5
SHA1
Perfect Forward Secrecy (PFS)
none
DH1
DH2
DH5
Related Settings
Add this VPN connection to IPSec_VPN zone.
More Settings
Less Settings
Inbound/Outbound traffic NAT
Outbound Traffic
Source NAT
Source
NONE
---- Create Object ----
DMZ_SUBNET
LAN1_SUBNET
LAN2_SUBNET
address1
Destination
NONE
---- Create Object ----
DMZ_SUBNET
LAN1_SUBNET
LAN2_SUBNET
address1
SNAT
NONE
---- Create Object ----
DMZ_SUBNET
LAN1_SUBNET
LAN2_SUBNET
address1
Inbound Traffic
Source NAT
Source
NONE
---- Create Object ----
DMZ_SUBNET
LAN1_SUBNET
LAN2_SUBNET
address1
Destination
NONE
---- Create Object ----
DMZ_SUBNET
LAN1_SUBNET
LAN2_SUBNET
address1
SNAT
NONE
---- Create Object ----
DMZ_SUBNET
LAN1_SUBNET
LAN2_SUBNET
address1
Destination NAT
#
Original IP
Mapped IP
Protocol
Original Port
Mapped Port