Concept Guide
vpn-dialer
vpn-dialer <name>
enable dnetclear|l2tp|pptp|securid_newpinmode|wirednowifi
ike {authentication {pre-share <key>|rsa-sig}|encryption {3des|des}|
group {1|2}|hash {md5|sha}|lifetime [<seconds>]}
ipsec {encryption {esp-3des|esp-des}|hash {esp-md5-hmac|esp-sha-hmac}|
lifetime [<seconds>]|pfs {group1|group2}}
no {enable...|ipsec...|ppp...}
ppp authentication {cache-securid|chap|mschap|mschapv2|pap}
Description
This command configures the VPN dialer.
Syntax
Parameter Description Range Default
<name>
Name that identifies this VPN dialer
configuration.
— —
enable
Enables dialer operations: — —
dnetclear
Enables “split tunneling” functionality so that
traffic destined for the internal network is
tunneled while traffic for the Internet is not.
This option is not recommended for security
reasons.
— disabled
l2tp
Allows the dialer to negotiate a Layer-2
Tunneling Protocol (L2TP)/IPsec tunnel with
the controller.
— enabled
pptp
Allows the dialer to negotiate a Point-to-Point
Tunneling Protocol (PPTP) with the controller.
— disabled
securid_newpinmode
Supports SecurID new and next pin mode. — disabled
wirednowifi
Allows the dialer to detect when a wired
network connection is in use, and shuts down
the wireless interface.
— disabled
ike
Configures internet key exchange (IKE)
protocol. This configuration must match the
IKE policy configured with the crypto isakmp
policy command on the controller.
— —
authentication
Specifies whether preshared keys or RSA
signatures are used for IKE authentication.
pre-share
|
rsa-sig
pre-share
Dell Networking W-Series ArubaOS 6.5.x | Reference Guide vpn-dialer | 2231