Creating a Secure GRE Tunnel
Tunnel Destination
IP Address of GRE tunnel
Subnet Mask
For IPSec Tunnel
Connection Name
IPSec Profile
Local Identifier Type
Local Identifier
Remote Identifier Type
Remote Identifier
For IKE Authentication Method
Pre-shared Key
Certificate
For Routing Protocol
Static Routing
IP Address
RV345/345P Administration Guide
84
Select the tunnel destination (Static IP or FQDN) from the drop-down list.
Enter the IP address of the tunnel which carries the transport protocol.
Enter the subnet mask of the GRE tunnel.
Name of the connection.
Select the IPSec profile (Default, IPSecProfileAuto, IPSecProfileManual, Manual
1, or Auto) from the drop-down list.
Select Local WAN IP, Local FQDN, or Local User FQDN from the drop-down list.
Enter the identifier name or IP Address based on your selection.
Select Local WAN IP, Local FQDN, or Local User FQDN from the drop-down list.
Enter the identifier name or IP Address based on your selection.
IKE peers authenticate each other by computing and sending a keyed hash of data that
includes the pre-shared key. If the receiving peer is able to create the same hash
independently using its Pre-shared key, it knows that both peers must share the same
secret, thus authenticating the other peer. Pre-shared keys do not scale well because
each IPSec peer must be configured with the Pre-shared key of every other peer with
which it establishes a session. Enter the Pre-shared Key, and click Enable to enable the
Minimum Pre-shared Key Complexity.
The digital certificate is a package that contains information such as a certificate bearer's
identity: name or IP address, the certificate's serial number, the certificate's expiration
date, and a copy of the certificate bearer's public key. The standard digital certificate
format is defined in the X.509 specification. X.509 version 3 defines the data structure
for certificates. Select the certificate from the drop-down list.
Check Static Routing to enable the static routing and select the following from the
drop-down list.
• Split Tunneling — Allows a mobile user to access dissimilar security domains
like a public network and a local LAN or WAN simultaneously, using the same
or different network connections.
• Tunnel all traffic — To allow all the traffic through the tunnel.
Click Add and enter the IP Address. You can also edit or delete the existing record by
clicking Edit or Delete.
VPN