Add a remote access connection
- Go to Add. and click
- Enter a name.
-
Specify the general settings:
Option Description Policy IPsec profile to use for the traffic. Gateway type Action to take when the VPN service or device restarts. Disable Keep the connection disabled until the user activates it.
Respond only Keep the connection ready to respond to any incoming request.
-
Specify authentication settings.
Option Description Authentication type Authentication to use for the connection. Preshared key Authenticate endpoints using the secret known to both endpoints.
Digital certificate Authenticate endpoints by exchanging certificates (either self-signed or issued by a certificate authority).
-
Specify local network details.
Option Description Local WAN port WAN port, which acts as the endpoint for your tunnel. Local ID For preshared key, select an ID type and type a value. DER ASN1DN (X.509) is not acceptable. -
Specify remote network details.
Option Description Remote host IP address or hostname of the remote endpoint.(To specify any IP address, type “*”.) Allow NAT traversal Enable NAT traversal if a NAT device exists between your endpoints, that is, when the remote peer has a private or non-routable IP address. Remote subnet Remote networks to which you want to provide access. Remote ID For preshared key, select an ID type and type a value. DER ASN1DN (X.509) is not acceptable. -
Specify quick mode selectors.
Option Description Local port Port that the local peer uses for TCP or UDP traffic.(To specify any port, type “*”.) Remote port Port that the remote peer uses for TCP or UDP traffic.(To specify any port, type “*”.) -
Specify advanced settings.
Option Description Disconnect when tunnel is idle Disconnect idle clients from the session after the specified time. Idle session time interval Time, in seconds, after which idle clients will be disconnected. - Click Save.