From LCOS 10.20, the new parameters Encapsulation and Destination port are located in the table .
Use this table to specify the parameters of IKEv2 VPN connections that are not included in the SA negotiation. An entry named "DEFAULT" is provided with common settings.
- Encapsulation
- In some scenarios, using the normal VPN port 500 is not an option, such as when firewalls are in the way. SSL or UDP can be set here. Use this in combination to configure any Destination port. The IKEv2 tunnel is established either with port 4500 for UDP or with the port set for the Destination port. If the destination port is set to 500, this will be ignored and port 4500 is used instead. For SSL, the tunnel is established either with port 443 or with the setting for the destination port. If the destination port is set to 500 or 4500, this will be ignored and port 443 is used instead. If set to "None", the port 500 is taken and the setting in Destination port is ignored. The configurable port can be used for scenarios where a LANCOM router already accepts VPN tunnels on the standard ports. A port forwarding rule would allow these ports to be forwarded to any destination.
- Destination port
- Here you can specify that the destination port depends on the setting in Encapsulation. If the setting is different from 500, UDP encapsulation is performed automatically.
