VPN Manual Policy Help

This screen allows you to define or edit an "Manual" VPN policy.
A "Manual" VPN policy requires all settings (including the keys) for the VPN tunnel to be manually input at each end (both VPN endpoints). No 3rd party server or organization is involved.

Remote VPN Endpoint

Select the desired option (IP address or Domain Name) and enter the address or domain name of the remote VPN endpoint you wish to connect to.

Note: The remote VPN endpoint must have this VPN Gateway's address entered as its "Remote VPN Endpoint".

NETBIOS Enable

Check this if you wish NETBIOS traffic to be forwarded over the VPN tunnel. The NETBIOS protocol is used by Microsoft Networking.

Local LAN

This identifies which PCs on your LAN are covered by this policy. For each selection, data must be provided as follows:

The remote VPN endpoint must have these IP addresses entered as its "Remote" addresses.

Remote LAN

This identifies which PCs on the remote LAN are covered by this policy. For each selection, data must be provided as follows:

The remote VPN endpoint must have these IP addresses entered as its "Local" addresses.

ESP Configuration

ESP (Encapsulating Security Payload) provides security for the payload (data) sent through the VPN tunnel.

SPI

Enter the required SPIs. Each policy must have unique SPIs. These settings must match the remote VPN endpoint. Note that the "in" setting here must match the "out" setting on the remote VPN endpoint, and the "out" setting here must match the "in" setting on the remote VPN endpoint.

Encryption

Select the desired Encryption Algorithm, and enter the key in the field provided. For 3DES, the keys should be 24 ASCII characters (48 Hex characters).

Authentication

Select the desired Authentication Algorithm, and enter the key in the field provided. For MD5, the keys should be 16 ASCII characters (32 Hex characters). For SHA-1, the keys should be 20 ASCII (40 Hex characters).