1-888-77-Kerio
Home » Categories » Kerio Control » VPN
Icon Printer Icon Email      Icon Twitter Icon Digg Icon Stumbleupon Icon de.icio.us Icon FaceBook

Configuring IPsec VPN

IPsec overview

Kerio Control supports IPsec. IPsec (IP security) is a security extension for Internet Protocol (read more in Wikipedia).

Kerio Control uses IPsec for VPN implementation. IPsec can be used for:

  • IPsec VPN server for connecting clients (desktops, notebooks, mobile devices etc...)

  • IPsec VPN tunnel for connecting LANs

This article describes using IPsec VPN server and configuring clients.

For securing the communication you can use:

  • a preshared key (PSK, shared secret)

  • a SSL certificate

  • both methods in Kerio Control (client application must use only one method).

Each user must provide their credentials for authentication.

Configuring IPsec VPN server with a preshared key

The preshared key is a shared password for all users using an IPsec VPN.

VPN Server Properties

VPN Server Properties

  1. In the administration interface, go to Interfaces.

  2. Double-click on VPN Server.

  3. In the VPN Server Properties dialog (see screenshot VPN Server Properties), check Enable IPsec VPN Server.

    Kerio Control is able to provide the Kerio VPN server and IPsec VPN server simultaneously.

  4. On tab IPsec VPN, select a valid SSL certificate in the Certificate pop-up list.

  5. Check Use preshared key and type the key.

  6. Save the settings.

Configuring IPsec server with a SSL certificate

  1. In the administration interface, go to Interfaces.

  2. Double-click on VPN Server.

  3. In the VPN Server Properties dialog, check Enable IPsec VPN Server.

  4. On tab IPsec VPN, select a valid SSL certificate in the Certificate pop-up list.

  5. On tab IPsec VPN, check Use certificate for clients.

  6. Save the settings.

Configuring clients with a preshared key

Tell your users what to prepare for the configuration of their clients:

  • VPN type: L2TP IPsec PSK

  • Kerio Control hostname or IP address

  • preshared key (PSK, shared secret)

  • username and password for access to firewall

Supported mobile devices

Many mobile devices support IPsec VPN and may work with Kerio Control. However, Kerio Control officially supports the following list:

  • Android 4 and higher

  • iOS 6 and higher

Examples of Apple iPhone and Android settings

Examples of Apple iPhone and Android settings


comments powered by Disqus