Configure VPN Roadwarrior mode
1. Enter the name of the remote station in "Remote End Name".
2. Click the "Create" button. A new entry is generated in the table.
3. For "Remote Mode", select "Roadwarrior".
4. For "Remote Type", select "Any".
5. In "Remote Address", enter the IP address of the remote network.
6. In "Virtual IP Mode", specify how the IP address of the VPN gateway is obtained.
7. Click the "Set Values" button.
4.9.6.3
Connections
On the WBM page, you configure the basic settings for the VPN connection. With these
settings, the device (local endpoint) can establish a secure VPN tunnel to the partner. You
specify the security settings on the WBM page "Authentication".
Note
Several IPsec VPN connections via the same VPN endpoint
If you have created IPsec VPN connections to different remote subnets via the same VPN
endpoint, the first configured VPN connection (lowest index) is the main connection (parent).
Via the main connection all other IPsec VPN connections (children) are created and
established. If all VPN tunnels are now established and the main (parent) connection is
terminated all child connections are interrupted. After the DPD timeout has expired, all IPsec
VPN connections are reestablished via the main connection.
If only one child connection is terminated, the parent connection and the other child
connections are retained.
Note
IPsec: Restrictions for phase 2 connections
Create a maximum of 20 phase 2 connections per phase 1 (remote endpoint).
Note
If you use "NETMAP"
● only auto firewall rules are supported
● For "Operation" the setting "on demand" cannot be selected.
Configuring with Web Based Management
4.9 "Security" menu
SCALANCE S615 Web Based Management
284
Configuration Manual, 11/2019, C79000-G8976-C388-08