InterLynx/TS User’s Manual_________________________________________________________________
9-2
3.
Click on the
Add A Connection
button. This will open the
Add A Connection
page to begin the VPN
configuration process.
4.
In the
Add A Connection
page the following information is required to setup the VPN:
a.
Connection Name
This will be the name of the VPN. i.e. Austin2UK.
b.
Location
There are two choices here,
Host
side (corporate network) and
Client
side (remote
site).
c.
Auto Start Connection at Boot
When this box is checked, the unit will automatically try to
bring up the VPN connection when the unit is rebooted.
(We recommend that the Client side
box be checked and the Host site box remains unchecked.)
d.
Perfect Forward Secrecy
The use of a short term key and a long term key so that if one key is
compromised the data is still secure. If both keys are compromised only the data associated with
that set of keys is vulnerable until the next re-keying sequence. Default is yes ( recommended)
e.
Authentication Method
There are two choices for authentication,
rsasigkey
and
secret
.
Choose Secret
. Secret uses a Shared Secret pass phrase.
f.
Shared Secret
This is where the ”secret pass phrase” that will be shared by the VPN devices is
entered.
NOTE: The Secret pass phrase cannot contain “”(double quotes) or a carriage
return. The pass phrase should not be found in a dictionary
.
g.
ID
This will be the name given to each VPN device respectively. (we recommend that the
@
sign
be placed in front of the ID, this will suppress a DNS lookup on the DNS Server for the ID
name).
h.
External Address
This is the IP address associated with the external interface(the interface
connected to the router/internet) of each device.
i.
Subnet
This is the IP address range (the IL/TS default is 192.168.1.0) that is being used on the
internal side of the VPN device.
Note: The internal subnets must be unique in order for the
VPN traffic to be passed thru the InterLynx/TS units. i.e. Both units cannot have the same
internal IP address range of 192.168.1.0.
j.
Next Hop
This will most likely be the Internet router for the network.