17.1.4. IPSec Client Settings

You can find the IPSec Client Settings at VPN → IPSec → Client Settings.

General settings allows you to set an EAP Radius Server from the authentication servers to be used for radius authentication for an IPSec Tunnel.

Secrets allow you to define usernames and password for Client authentication. They are either for Pre Shared Keys or EAP MD5/MSCHAPv2. The identifier has to match the remote identifier.

Be aware that secrets are not tunnel specific but will match on any defined Phase 1.

Pools define IP Address Pools to use with a specific Phase 1. The IPs will be send to the client as a DHCP address.