Page 151 / 268 Scroll up to view Page 146 - 150
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-45
202-10006-05, June 2005
Figure 8-44:
VPN Auto Policies Screen
Page 152 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-46
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
5.
Click Apply. The Get VPN Policies web page is displayed.
Figure 8-45:
VPN Policies Screen
6.
Repeat for the DG834G on LAN B and pay special attention to use the following network
settings as appropriate.
General, Remote Address Data (e.g.,
14.15.16.17
)
Remote LAN, Start IP Address
IP Address (e.g,
192.168.0.1
)
Subnet Mask (e.g.,
255.255.255.0
)
Preshared Key (e.g.,
12345678
)
7.
Use the VPN Status screen to activate the VPN tunnel by performing the following steps:
a.
Open the DG834G management interface and click on VPN Status to display the VPN
Status/Log screen (
Figure 8-46
).
Note:
The VPN Status screen is only one of three ways to active a VPN tunnel. See
“Activating a VPN Tunnel” on page 8-27
for information on the other ways.
Page 153 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-47
202-10006-05, June 2005
Figure 8-46:
VPN Status/Log Screen
b.
Click VPN Status (
Figure 8-46
) to display the Current VPN Tunnels (SAs) screen
(
Figure 8-47
). Click on Connect for the VPN tunnel you want to activate.
Figure 8-47:
Current VPN Tunnels (SAs) Screen
c.
Review the VPN Status/Log screen (
Figure 8-46
) to verify that the tunnel is connected.
Page 154 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-48
Virtual Private Networking (Advanced Feature)
202-10006-05, June 2005
Using Manual Policy to Configure VPN Tunnels
As an alternative to IKE, you may use Manual Keying, in which you must specify each phase of
the connection. A "Manual" VPN policy requires all settings for the VPN tunnel to be manually
input at each end (both VPN endpoints).
Click the VPN Policies link of the main menu, and then click the Add Manual Policy radio button
to display the Manual Keys menu shown in
Figure 8-48
.
Figure 8-48: DG834G VPN Tunnel Manual Policy Configuration Menu
Page 155 / 268
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
Virtual Private Networking (Advanced Feature)
8-49
202-10006-05, June 2005
General
The DG834G VPN tunnel network connection fields are defined as follows:
Policy Name
—enter a unique name to identify this policy. This name is not supplied to the
remote VPN endpoint. It is used only to help you manage the policies.
Remote VPN Endpoint
—select the desired option (IP address or Fully Qualified Domain
Name) and enter the address of the remote VPN endpoint to which you wish to connect.
Note:
The remote VPN endpoint must have this VPN Gateway's address entered as its
"Remote VPN Endpoint".
NETBIOS Enable
—check this if you wish NETBIOS traffic to be forwarded over the VPN
tunnel. The NETBIOS protocol is used by Microsoft Networking.
Local LAN
This identifies which PCs on your LAN are covered by this policy. For each selection, data must
be provided as follows:
Single address
—enter an IP address in the "Single/Start IP address" field. Typically, this
setting is used when you wish to make a single Server on your LAN available to remote users.
Range address
—enter the starting IP address in the "Single/Start IP address" field, and the
finish IP address in the "Finish IP address" field. This must be an address range used on your
LAN.
Subnet address
—enter an IP address in the "Single/Start IP address" field, and the desired
network mask in the "Subnet Mask" field.
The remote VPN endpoint must have these IP addresses entered as its "Remote" addresses.
Remote LAN
This identifies which PCs on the remote LAN are covered by this policy. For each selection, data
must be provided as follows:
Single PC - no Subnet
—select this option if there is no LAN (only a single PC) at the remote
endpoint. If this option is selected, no additional data is required.
Single address
—enter an IP address in the "Single/Start IP address" field. This must be an
address on the remote LAN. Typically, this setting is used when you wish to access a server on
the remote LAN.

Rate

3.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top