D-Link DWC-1000 User Manual244Section 7 - VPN SettingsPoliciesPath: VPN > IPSec VPN > PoliciesAn IPSec policy is between the DWC-1000 and another gateway/router and an IPSec client on a remote host.The IPSec mode can be either tunnel or transport depending on the network being traversed between the twopolicy endpoints.• Transport: This is used for end-to-end communication between the DWC-1000 and the tunnelendpoint, either another IPSec gateway or an IPSec VPN client on a host. Only the data payloadis encrypted and the IP header is not modified or encrypted.• Tunnel: This mode is used for network-to-network IPSec tunnels where this gateway is oneendpoint of the tunnel. In this mode the entire IP packet including the header is encryptedand/or authenticated.When tunnel mode is selected, you can enable NetBIOS and DHCP over IPSec. DHCP over IPSec allows this switchto serve IP leases to hosts on the remote LAN. As well in this mode you can define the single IP address, range ofIPs, or subnet on both the local and remote private networks that can communicate over the tunnel.To configure the radio settings:1. Click VPN > IPSec VPN > Policies.iPsec VPn2. Click Add new IPSec Policy. Fill out the General section which you will name the VPN, select policytype, define the tunnel type, and define endpoints.
