Page 226 / 308
Scroll up to view Page 221 - 225
221
Examples:
1.
LAN-to-LAN connection
Two BiPAC 7800VDOXs want to setup a secure IPSec VPN tunnel
Note
: The IPSec Settings shall be consistent between the two routers.
Head Office Side:
Setup details:
Item
Function
Description
1
Connection Name
H-to-B
Give a name for IPSec connection
Local Network
Subnet
Select Subnet
IP Address
192.168.1.0
2
Netmask
255.255.255.0
Head Office network
3
Secure
Gateway
Address(Hostanme)
69.121.1.30
IP address of the Branch office router
(on WAN side)
Remote Network
Subnet
Select Subnet
IP Address
192.168.0.0
4
Netmask
255.255.255.0
Branch office network
Proposal
Method
ESP
Authentication
MD5
Encryption
3DES
Prefer
Forward
Security
MODP 1024(group2)
5
Pre-shared Key
123456
Security Plan
Page 228 / 308
223
Branch Office Side:
Setup details: the same operation as done in Head Office side
Item
Function
Description
1
Connection Name
B-to-H
Give a name for IPSec connection
Local Network
Subnet
Select Subnet
IP Address
192.168.0.0
2
Netmask
255.255.255.0
Branch Office network
3
Remote
Secure
Gateway
Address(Hostanme)
69.121.1.3
IP address of the Head office router
(on WAN side)
Remote Network
Subnet
Select Subnet
IP Address
192.168.1.0
4
Netmask
255.255.255.0
Head office network
Proposal
Method
ESP
Authentication
MD5
Encryption
3DES
Prefer
Forward
Security
MODP 1024(group2)
5
Pre-shared Key
123456
Security Plan
Page 229 / 308
224
2.
Host to LAN
Router servers as VPN server, and host should install the IPSec client to connect to head office
through IPSec VPN.
Item
Function
Description
1
Connection Name
Headoffice-to-Host
Give a name for IPSec connection
Local Network
Subnet
Select Subnet
IP Address
192.168.1.0
2
Netmask
255.255.255.0
Head Office network
3
Remote
Secure
Gateway
(Hostanme)
69.121.1.30
IP address of the Branch office router
(on WAN side)
Remote Network
4
Single Address
69.121.1.30
Host
Proposal
Method
ESP
Authentication
MD5
Encryption
3DES
Prefer
Forward
Security
MODP 1024(group2)
5
Pre-shared Key
123456
Security Plan
19216811.live