Page 136 / 268 Scroll up to view Page 131 - 135
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-30
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
Once the connection is established, you can open the browser of the PC and enter the LAN IP
address of the remote DG834G. After a short wait, you should see the login screen of the
Router (unless another PC already has the DG834G management interface open).
Gateway-to-Gateway Configuration
—test the VPN tunnel by pinging the remote network
from a PC attached to the DG834G.
a.
Open command prompt (i.e., Start -> Run -> cmd).
b.
ping 192.168.3.1.
Figure 8-34:
Pinging test results
Note:
The pings may fail the first time. If so, then try the pings a second time.
Start Using a VPN Tunnel to Active It
To use a VPN tunnel, use a Web browser to go to a URL whose IP address or range is covered by
the policy for that VPN tunnel.
Verifying the Status of a VPN Tunnel
To use the VPN Status page to determine the status of a VPN tunnel, perform the following steps:
1.
Log in to the Router.
2.
Open the DG834G management interface and click on VPN Status to get the VPN Status/Log
screen (
Figure 8-35
).
Log—this log shows the details of recent VPN activity, including the building of the VPN
tunnel. If there is a problem with the VPN tunnel, refer to the log for information about what
might be the cause of the problem.
Click Refresh to see the most recent entries.
Click Clear Log to delete all log entries.
Page 137 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-31
202-10006-05, June 2005
Figure 8-35:
VPN Status/Log Screen
3.
Click on VPN Status (
Figure 8-30
) to get the Current VPN Tunnels (SAs) screen
(
Figure 8-31
).
This table lists the following data for each active VPN Tunnel.
SPI
—each SA has a unique SPI (Security Parameter Index) for traffic in each direction.
For "Manual" key exchange, the SPI is specified in the Policy definition. For "Automatic"
key exchange, the SPI is generated by the IKE protocol.
Policy Name
—the name of the VPN policy associated with this SA.
Remote Endpoint
—the IP address on the remote VPN Endpoint.
Action
—the action will be either a "Drop" or a "Connect" button.
SLifeTime (Secs)
—the remaining Soft Lifetime for this SA in seconds. When the Soft
Lifetime becomes zero, the SA (Security Association) will re-negotiated.
HLifeTime (Secs)
—the remaining Hard Lifetime for this SA in seconds. When the Hard
Lifetime becomes zero, the SA (Security Association) will be terminated. (It will be
re-established if required.)
Page 138 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-32
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
Figure 8-36:
Current VPN Tunnels (SAs) Screen
Deactivating a VPN Tunnel
Sometimes a VPN tunnel must be deactivated for testing purposes. There are two ways to
deactivate a VPN tunnel:
Policy table on VPN Policies page
VPN Status page
Using the Policy Table on the VPN Policies Page to Deactivate a VPN Tunnel
To use the VPN Policies page to deactivate a VPN tunnel, perform the following steps:
1.
Log in to the Router.
2.
Open the DG834G management interface and click on VPN Policies to get the VPN Policies
screen (
Figure 8-38
).
Page 139 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-33
202-10006-05, June 2005
Figure 8-37:
VPN Policies
3.
Clear the Enable check box for the VPN tunnel you want to deactivate and click Apply. (To
reactivate the tunnel, check the Enable box and click Apply.)
Using the VPN Status Page to Deactivate a VPN Tunnel
To use the VPN Status page to deactivate a VPN tunnel, perform the following steps:
1.
Log in to the Router.
2.
Open the DG834G management interface and click on VPN Status to get the VPN Status/Log
screen (
Figure 8-38
).
Page 140 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-34
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
Figure 8-38:
VPN Status/Log Screen
3.
Click VPN Status (
Figure 8-38
) to get the Current VPN Tunnels (SAs) screen (
Figure 8-39
).
Click Drop for the VPN tunnel you want to deactivate.
Figure 8-39:
Current VPN Tunnels (SAs) Screen

Rate

3.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top