D-Link DWC-1000 User Manual
251
Section 7 - VPN Settings
Policies
Path: VPN > IPSec VPN > Policies
An IPSec policy is between the DWC-1000 and another gateway/router and an IPSec client on a remote host.
The IPSec mode can be either tunnel or transport depending on the network being traversed between the two
policy endpoints.
•
Transport:
This is used for end-to-end communication between the DWC-1000 and the tunnel
endpoint, either another IPSec gateway or an IPSec VPN client on a host. Only the data payload
is encrypted, and the IP header is not modified or encrypted.
•
Tunnel:
This mode is used for network-to-network IPSec tunnels where this gateway is one
endpoint of the tunnel. In this mode, the entire IP packet including the header is encrypted
and/or authenticated.
When tunnel mode is selected, you can enable NetBIOS and DHCP over IPSec. DHCP over IPSec allows this switch
to serve IP leases to hosts on the remote LAN. Also, in this mode you can define the single IP address, range of IPs,
or subnet on both the local and remote private networks that can communicate over the tunnel.
To configure the radio settings:
1. Click
VPN
>
IPSec VPN
>
Policies
.
IPSec VPN
2. Click
Add new IPSec Policy
. Fill in the General section where you will name the IPsec Policy, select
policy type, define the tunnel type, and define endpoints.