IS200DSPXH1CAA IS200DSPXH1GE控制器模块,机器人模块卡件
主机到主机:主机到主机是一种特殊的配置,用于在两个单独的主机之间建立VPN隧道。EW200工业蜂窝网关217 IPsec设置转到安全>VPN>IPsec选项卡。IPsec设置允许用户创建和控制IPsec隧道。启用IPsec配置窗口项值设置描述默认情况下未选中IPsec单击“启用”框以启用IPsec功能。默认情况下设置了最大并发IPSec隧道16。指定的值将限制并发IPSec隧道连接的数量。保存单击保存保存设置撤消单击撤消取消设置创建/编辑IPsec隧道确保在进一步配置IPsec隧道设置之前选中IPsec启用框以启用。应用添加/编辑按钮后,将出现一系列配置屏幕。它们是隧道配置、本地和远程配置、身份验证、IKE阶段、IKE建议定义、IPsec阶段和IPsec建议定义。查看本地和远程VPN设备的隧道详细信息。EW200工业蜂窝网关218隧道配置窗口项值设置描述隧道默认未选中选中启用框以激活IPsec隧道隧道名称1。所需设置2。字符串格式,文本输入隧道名称。值范围:1~19个字符。接口1。所需设置2。默认情况下选择WAN 1选择要在其上建立IPsec隧道的接口。它可以是任何可用的WAN和LAN接口。隧道方案1。所需设置2。默认情况下选择了站点到站点从应用程序的下拉框中选择IPsec隧道方案。选择“站点到站点”、“站点到主机”、“主机到站点”或“主机到主机”。如果选择了LAN接口,则只有主机到主机方案可用。通过“站点到站点”或“站点到主机”或“主机到站点”,IPsec以隧道模式运行。区别在于子网的数量。对于主机到主机,IPsec以传输模式运行。隧道TCP MSS 1。可选设置2。默认设置为自动从下拉框中选择以定义Tunel TCP MSS的大小。选择自动,所有设备将自动调整此参数。选择Manual(手动),并指定Tunel TCP MSS的预期值。值范围:64~1500字节。封装协议1。所需设置2。默认情况下选择ESP从此IPsec隧道的下拉框中选择封装协议。可用封装为ESP和AH。IKE版本1。所需设置2。v1由dfault选择指定此IPSec隧道的IKE版本。选择v1或v2。本地和远程配置窗口项值设置描述本地子网列表所需设置指定本地子网IP地址和子网掩码。单击添加或删除按钮添加或删除本地子网。te_1:选择隧道方案中的动态VPN选项时,将只有一个子网可用。te_2:当选择隧道方案中的主机到站点或主机到主机选项时,本地子网将不可用。te_3:当选择Hub and Spoke中的Hub and Spoke选项时,将只有一个子网可用。EW200工业蜂窝网关219需要远程子网列表设置指定远程子网IP地址和子网掩码。单击添加或删除按钮添加或删除远程子网设置。远程网关
Host to Host: Host to Host is a special configuration for building a VPN tunnel between two single hosts. EW200 Industrial Cellular Gateway 217 IPsec Setting Go to Security > VPN > IPsec tab. The IPsec Setting allows user to create and con IPsec tunnels. Enable IPsec Configuration Window Item Value setting Description IPsec Unchecked by default Click the Enable box to enable IPsec function. Max. Concurrent IPSec Tunnels 16 is set by default The specified value will limit the number of simultaneous IPSec tunnel connection. Save Click Save to save the settings Undo Click Undo to cancel the settings Create/Edit IPsec tunnel Ensure that the IPsec enable box is checked to enable before further configuring the IPsec tunnel settings. When Add/Edit button is applied, a series of configuration screens will appear. They are Tunnel Configuration, Local & Remote Configuration, Authentication, IKE Phase, IKE Proposal Definition, IPsec Phase, and IPsec Proposal Definition. Con the tunnel details for both local and remote VPN devices. EW200 Industrial Cellular Gateway 218 Tunnel Configuration Window Item Value setting Description Tunnel Unchecked by default Check the Enable box to activate the IPsec tunnel Tunnel Name 1. Required setting 2. String format, text Enter a tunnel name. Value Range: 1 ~ 19 characters. Interface 1. Required setting 2. WAN 1 is selected by default Select the interface on which IPsec tunnel is to be established. It can be any available WAN and LAN interface. Tunnel Scenario 1. Required setting 2. Site to site is selected by default Select an IPsec tunneling scenario from the dropdown box for your application. Select Site-to-Site, Site-to-Host, Host-to-Site, or Host-to-Host. If LAN interface is selected, only Host-to-Host scenario is available. With Site-to-Site or Site-to-Host or Host-to-Site, IPsec operates in tunnel mode. The difference is the number of subnets. With Host-to-Host, IPsec operates in transport mode. Tunnel TCP MSS 1. An optional setting 2. Auto is set by default Select from the dropdown box to define the size of Tunel TCP MSS. Select Auto, and all devices will adjust this parameter automatically. Select Manual, and specify an expected vaule for Tunel TCP MSS. Value Range: 64 ~ 1500 bytes. Encapsulation Protocol 1. Required setting 2. ESP is selected by default Select the Encapsulation Protocol from the dropdown box for this IPsec tunnel. Available encapsulations are ESP and AH. IKE Version 1. Required setting 2. v1 is selected by dfault Specify the IKE version for this IPSec tunnel. Select v1 or v2. Local & Remote Configuration Window Item Value setting Description Local Subnet List Required setting Specify the Local Subnet IP address and Subnet Mask. Click the Add or Delete button to add or delete a Local Subnet. te_1: When Dynamic VPN option in Tunnel Scenario is selected, there will be only one subnet available. te_2: When Host-to-Site or Host-to-Host option in Tunnel Scenario is selected, Local Subnet will t be available. te_3: When Hub and Spoke option in Hub and Spoke is selected, there will be only one subnet available. EW200 Industrial Cellular Gateway 219 Remote Subnet List Required setting Specify the Remote Subnet IP address and Subnet Mask. Click the Add or Delete button to add or delete Remote Subnet setting. Remote Gateway
