Page 76 / 212
Scroll up to view Page 71 - 75
Reference Manual for the ProSafe VPN Firewall FVS114
5-20
Basic Virtual Private Networking
202-10098-01, April 2005
How to Set Up a Gateway-to-Gateway VPN Configuration
Figure 5-22:
Gateway-to-Gateway VPN Tunnel
Follow the procedure below to set the LAN IPs on each FVS114 to different subnets and configure
each properly for the Internet.
The LAN IP address ranges of each VPN endpoint must be different. The connection will fail if
both are using the NETGEAR default address range of 192.168.0.x.
In this example, LAN A uses
192.168.0.1 and LAN B uses 192.168.3.1.
Note:
This section uses the VPN Wizard to set up the VPN tunnel using the VPNC
default parameters listed in
Table 5-1 on page 5-4
. If you have special requirements not
covered by these VPNC-recommended parameters, refer to
Chapter 6, “Advanced
Virtual Private Networking
” to set up the VPN tunnel.
A
B
VPN Tunnel
PCs
PCs
FVS114 VPN Firewall
FVS114 VPN Firewall
Page 77 / 212
Reference Manual for the ProSafe VPN Firewall FVS114
Basic Virtual Private Networking
5-21
202-10098-01, April 2005
Procedure to Configure a Gateway-to-Gateway VPN Tunnel
Follow this procedure to configure a gateway-to-gateway VPN tunnel using the VPN Wizard.
1.
Log in to the FVS114 on LAN A at its default LAN address of
with its
default user name of
admin
and password of
password
. Click the
VPN Wizard
link in the
main menu to display this screen. Click
Next
to proceed.
Figure 5-23:
VPN Wizard start screen
2.
Fill in the Connection Name and the pre-shared key, select the type of target end point, and
click
Next
to proceed.
Figure 5-24:
Connection Name and Remote IP Type
Enter the new Connection Name:
(
GtoG
in this example)
Enter the pre-shared key:
(
12345678
in this example)
Select the radio button:
A remote VPN Gateway
Page 78 / 212
Reference Manual for the ProSafe VPN Firewall FVS114
5-22
Basic Virtual Private Networking
202-10098-01, April 2005
3.
Fill in the IP Address or FQDN for the target VPN endpoint WAN connection and click
Next
.
Figure 5-25:
Remote IP
4.
Identify the IP addresses at the target endpoint that can use this tunnel, and click
Next
.
Figure 5-26:
Secure Connection Remote Accessibility
Enter the WAN IP address of the remote VPN
gateway:
(
22.23.24.25
in this example)
Enter the LAN IP settings of the remote VPN
gateway:
•
IP Address
(
192.168.3.1
in this example)
•
Subnet Mask
(
255.255.255.0
in this example)
Page 79 / 212
Reference Manual for the ProSafe VPN Firewall FVS114
Basic Virtual Private Networking
5-23
202-10098-01, April 2005
The Summary screen below displays.
Figure 5-27:
VPN Wizard Summary
Page 80 / 212
Reference Manual for the ProSafe VPN Firewall FVS114
5-24
Basic Virtual Private Networking
202-10098-01, April 2005
To view the VPNC recommended authentication and encryption settings used by the VPN
Wizard, click the
here
link (see
Figure 5-27
). Click
Back
to return to the Summary screen.
Figure 5-28:
VPN Recommended Settings
5.
Click
Done
on the Summary screen (see
Figure 5-27
) to complete the configuration
procedure. The VPN Policies menu below displays showing that the new tunnel is enabled.
Figure 5-29:
VPN Policies
19216811.live