Symbol Technologies AP-5131 User Manual
AP-5131 Access Point Product Reference Guide
B-16
Yes.
•
Question 6: Can an IPSec tunnel over a PPPoE connection be established - such as
a PPPoE enabled DSL link?
a PPPoE enabled DSL link?
Yes. The AP-5131 supports tunneling when using a PPPoE username and password.
•
Question 7: Can I setup an AP-5131 so clients can access both the WAN normally
and only use the VPN when talking to specific networks?
and only use the VPN when talking to specific networks?
Yes. Only packets that match the VPN Tunnel Settings will be sent through the VPN tunnel.
All other packets will be handled by whatever firewall rules are set.
All other packets will be handled by whatever firewall rules are set.
•
Question 8: How do I specify which certificates to use for an IKE policy from the
AP-5131 certificate manager?
AP-5131 certificate manager?
When generating a certificate to use with IKE, use one of the following fields:
IP address
,
Domain Name
, or
Email
address. Also, make sure you are using NTP when attempting to
use the certificate manager. Certificates are time sensitive.
Configure the following on the
IKE Settings
page:
Local ID type refers to the way that IKE selects a local certificate to use.
• IP - tries the match the local WAN IP to the IP addresses specified in a local certificate.
• FQDN - tries to match the user entered local ID data string to the domain name field of
the certificate.
• UFQDN - tries to match the user entered local ID data string to the email address field
of the certificate.
Remote ID type refers to the way you identify an incoming certificate as being associated
with the remote side.
with the remote side.
• IP - tries the match the remote gateway IP to the IP addresses specified in the received
certificate.
• FQDN - tries to match the user entered remote ID data string to the domain name field
of the received certificate.