3.6
IPSEC VPN
fat
box G3
fat
box G3
MENU OPTIONS
Site-to-Site IKE PSK IPSEC Settings
3G IPSEC
1 = enable 0 = disable
1
start
aes128
aes128
sha1
sha1
modp1024
no
10800
3600
restart
30
150
VPN Server IP address
VPN Server Subnet IP Address/ Mask
Local VPN Subnet IP Address/ Mask
PSK Phasephrase
ISAKMP Phase 1
Phase 2
Start Mode (auto)
Encryption
Encryption
Hash Algorithm
Authentication (HMAC)
D-H Group
PFS Group
IKEv1 Agressive Mode
IKE SA Lifetime (s)
IPSEC Lifetime (s)
DPD Action
DPD Delay (s)
DPD Timeout (s)
start or route
Quick Start
LAN Ethernet
WAN Cellular
Port Forwarding
Dynamic DNS
IPSEC VPN
Serial Port
Management
System Status
Logout
FATBOX G3 configuration
for Site-to-Site IPSEC VPN
(as of the example in the
previous page)
WEB
MANAGEMENT
1 = IPSEC enabled, 0 = IPSEC disabled
202.200.XXX.XXX (according to public IP
assigned)
192.168.1.0/24 (according to network set-
tings)
10.1.1.0/24 (according to network settings)
Set to match remote end settings
Settings to correspond with remote end
settings
UPDATE and restart FATBOX
start = IPSEC tunnel will automatically be
connected;
route = IPSEC tunnel will be connected
when data is present
UPDATE
E.g. 3des, aes128, aes192, aes256
E.g. 3des, aes128, aes192, aes256
E.g. 3des, aes128, aes192, aes256
E.g. md1, sha1, sha256
E.g. 1, 2, 5, 14..
no = main mode yes = agressive
E.g. 10800
E.g. 3600
none, clear, hold or restart
E.g. 30
E.g. 150