20.1. IPSec General Settings¶
You can find the IPSec Settings at VPN → IPSec → General Settings.
Cisco Extension might be necessary to have multiple IPSec Phase 2 entries in IKEv1, if the remote side needs it.
Exclude LAN Network should stay on to prevent problems with the LAN Network.
You can configure various logging settings. The three most important logging settings are
- IKE SA
- IKE SA Child
- Configuration Backend
If you run into any configuration issues with IPSec, it is advisable to change the logging to DEBUG on those Settings. Under Advanced Settings you can configure more advanced logging settings.