When Configuration>Network>VPN Connections is selected in Expert mode, a screen like the one shown in the following figure appears.An administrative user can use the screen to add a VPN connection or edit one that is already in the list. See VPN on the OnSite for related background information.When the “Edit” or “Add” buttons are clicked, a “New/Modify Connection” screen appears, as shown in the following figure. The screen displays different fields depending on whether “RSA Public Keys” or “Shared Secret” are selected.The OnSite is referred to as the Local or “Left” host, and the remote gateway is referred to as the Remote or “Right” host. If left and right are not directly connected, then you must also specify a NextHop IP address. The next hop for the left host is the IP address of the router to which the OnSite sends packets to get them delivered to the right host. The next hop for the right host is the IP address of the router to which the remote host or gateway running IPsec sends packets when delivering them to the left host. Also, because the OnSite can have multiple Ethernet connections and IP addresses, you need to enter the appropriate IP address and hostname in the “ID” and IP Address” fields for the “Local (‘Left’)” host.See Field and Menu Options for Configuring a VPN Connection for what to enter on the screen. Work with the user who needs to make the VPN connection to make sure the information matches exactly on both ends.To enable VPN, make sure that IPsec is also enabled. For details about the information you need to complete this screen, see Field and Menu Options for Configuring a VPN Connection, if needed.
4. Enter any descriptive name you choose for the connection in the “Connection Name” field.
7. Select “Shared Secret” or “RSA Public Keys” from the “Authentication Method” pull-down menu.
c. Enter the IP address of the router through which the host’s packets reach the Internet in the “NextHop” field.
e. If “RSA Key” is selected, generate the key for the OnSite (left host) and find out the key from the remote gateway (where the right host resides). If desired, use copy and paste to enter the key in the “RSA Key” field.
f. If “Shared Secret” is selected, enter the shared secret in the “Pre-Shared Secret” field.
g.