Specifications

ManualsBrandsSiemens ManualsIP PhoneHIPATH V1.2.33

181

182

183

184

185

186

187

188

189

190

hg-07.fm

A31003-H3580-M103-2-76A9, 01-2009

HiPath 3000/5000 V8 - HG 1500 V8, Administrator Documentation

7-47

Nur für den internen Gebrauch

Explorers

Security

3. Configure the first tunnel for automatic key exchange with the IKE protocol. For more infor-

mation, see Section 7.2.5.53, "Adding tunnels".

4. Specify the key exchange data for the tunnel. You must enter a password for authentication

using pre-shared keys. For authentication using digital signatures, you must select at least

one CA certificate.

5. Configure the services that are to be used by the rules. For more information, see Section

7.2.5.40, "Configured Services".

6. Configure the "pass" rules with the necessary encryption for payload transfer (once for in-

bound direction, once for outbound direction (see Section 7.2.5.64, "Adding rules"). Con-

figure a "pass" rule without encryption that allows you to administer the Administration PC

over WBM.

7. Activate the configured tables. For more information, see Section 7.2.5.2, "Activate the

Configured VPN Tables".

8. Configure the relevant tunnel at the opposite tunnel endpoint. For more information, see

Section 7.2.5.53, "Adding tunnels".

9. Enable the IPsec function in the Security Explorer. For more information, see Section

7.2.5.3, "IPsec on/IPsec off".

7.2.5.1 Display General Information

You can view general information on the components used for IPsec.

WBM path:

WBM > Explorers > Security > (right-click) VPN > Display General Information

The IPsec General Information mask is displayed. The encryption algorithms that can be used,

the algorithms for checking data integrity (to detect data manipulation), public key algorithms

and Diffie-Hellman Groups are listed.

7.2.5.2 Activate the Configured VPN Tables

You can activate all previously configured VPN tables for certificates, services, rules, and tun-

nels:

WBM path:

WBM (write access activated with the Padlock icon in the control area?) > Explorers > Security

> (right-click) VPN > Activate the Configured VPN Tables

Please read the important message displayed.

Click Activate Now followed by OK in the confirmation mask. The configuration is enabled.