Third-Party Devices

If you are configuring a third-party device as a partner, the following settings are available:

  • IKE ID is an ID that the Corente Services Gateway sends to the third-party device to authenticate using Internet Key Exchange (IKE). You can select one of the following options for the IKE ID:

    • Name uses a text string with the domain name and Corente Services Gateway name in the following format: domain_name.gateway_name

    • IP Address (WAN) for Corente Services Gateways in inline configurations, use the WAN IP address. For Corente Services Gateways in peer configurations, use the WAN/LAN IP address.

    • Specified lets you define one of the following as an ID:

      • An IP address

      • A string, that is prefixed with the at sign (@). App Net Manager does not send the at sign (@) as part of the IKE identity. For example, if you specify @ExampleString01, App Net Manager sends ExampleString01 as the IKE identity.

        Note

        The IKE ID is case sensitive and can contain a maximum of 255 ASCII alphanumeric characters including special characters, period or dot (.), hyphen or minus sign (-), and underscore (_). The IKE ID cannot contain embedded space characters.

        If you specify the IKE ID, the Peer ID type must be Domain Name on all third party devices. App Net Manager does not support other Peer ID types, such as Email Address, Firewall Identifier, or Key Identifier.

  • Partner IKE ID is an ID that the Corente Services Gateway receives from the third-party device to authenticate using Internet Key Exchange (IKE). You can select one of the following options for the IKE ID:

    • WAN IP for Corente Services Gateways in inline configurations, use the WAN IP address. For Corente Services Gateways in peer configurations, use the WAN/LAN IP address.

    • IP Address lets you specify an IP address.

    • Specified lets you define one of the following as an ID:

      • An IP address

      • A string, that is prefixed with the at sign (@). App Net Manager does not send the at sign (@) as part of the IKE identity. For example, if you specify @ExampleString01, App Net Manager sends ExampleString01 as the IKE identity.

        Note

        The IKE ID is case sensitive and can contain a maximum of 255 ASCII alphanumeric characters including special characters, period or dot (.), hyphen or minus sign (-), and underscore (_). The IKE ID cannot contain embedded space characters.

        If you specify the IKE ID, the Local ID type must be Domain Name on all third party devices. App Net Manager does not support other Local ID types, such as Email Address, Firewall Identifier, or Key Identifier.

  • Timeouts sets the amount of time, in seconds, before the IKE or IPSec third-party device tunnel needs to be re-established.

    • IKE Lifetime - Specifies a timeout value between a minimum of 1,081 and a maximum of 86,400. The default value is 3,600.

    • IPSEC Lifetime - Specifies a timeout value between a minimum of 1,081 and a maximum of 86,400. The default value is 28,800.

  • Shared Secret specifies a shared secret used for authenticating to the third-party device using IKE.

Copyright © 2016, 2017, Oracle and/or its affiliates. All rights reserved. Legal Notices