1. Home
    2. /
  2. Manuals
    3. /
  3. Nokia
    4. /
  4. IP45
    5. /
  5. 54
Page 266 / 342 Scroll up to view Page 261 - 265
15
Working with VPNs
266
Nokia IP45 Security Platform User’s Guide v4.0
To configure a Site-to-Site VPN gateway
1.
Enter the IP address of the VPN gateway as given to you by the network administrator.
2.
Check the Bypass NAT check box to bypass the NAT rules, and to allow the VPN site to
access your internal network without restrictions.
3.
Click Next.
The VPN Network Configuration window opens.
4.
Select Download Configuration, and click next.
The Authentication Method window opens.
5.
Select the authentication method.
6.
Click Next.
Page 267 / 342
Configuring Remote Access VPNs
Nokia IP45 Security Platform User’s Guide v4.0
267
If you select the authentication method to be Shared Secret, the following window opens:
7.
If the topology is to be downloaded,
Enter the Topology username, and Topology password.
8.
Enter the Shared Secret.
If you select Specify Configuration from VPN Network Configuration window, the VPN
Network Configuration window opens.
a.
In the Destination Network column, enter up to three destination network addresses at
the VPN site to which you want to connect.
b.
In the Subnet mask column, select the subnet masks for the destination network
addresses.
Note
Obtain the destination networks and subnet masks from the VPN site system
administrator.
c.
Click Next.
Page 268 / 342
15
Working with VPNs
268
Nokia IP45 Security Platform User’s Guide v4.0
The Authentication Method window opens.
d.
Select the authentication method.
e.
Click Next.
If the Route All Traffic option is selected, you are ready to complete your VPN site. See
Completing Site Creation
on page 268.
Completing Site Creation
When you configure a VPN site, the Site Name window opens in the IP45 VPN site wizard.
To complete VPN site creation
1.
Enter a name for the VPN site.
2.
Click Next.
The Site Name window opens.
a.
Type the Site Name.
b.
If the Keep Alive Option is selected, enter the host IP address.
The connection is kept active by sending packets to the IP address that you enter.
3.
Click Finish.
The VPN Sites page reappears. If you added a VPN site, the new site appears in the VPN
Sites list. If you edited a VPN site, the modifications are reflected in the VPN Sites list.
Note
You can see the downloaded topology on your IP45 device from http://my.firewall/
vpntopo.html.
Page 269 / 342
Configuring Route-Based VPNs
Nokia IP45 Security Platform User’s Guide v4.0
269
Configuring Route-Based VPNs
Route-based VPNs allow administrators to extend dynamic routing protocols from headquarters
to remote locations over the VPN tunnel, improving network and VPN management efficiency
for a large network. Route-based VPNs combined with OSPF dynamic routing is a good solution
for constantly changing the networks.
Every VPN tunnel is represented as virtual tunnel interface (VTI) and assigned an IP address,
enabling the encapsulation of OSPF traffic.These virtual adapters can be used to establish
integrated dynamic routing configurations with the routing domains in protected networks.
Organizations can make frequent changes to the network topology by combining OSPF and
route-based VPNs.
To configure route-based VPNs
1.
Choose VPN from the main menu and select VPN Sites.
2.
Click New Site.
The VPN Site wizard opens.
3.
Type the VPN Gateway IP Address, and set the options for Bypass NAT and Bypass
firewall.
4.
Click Next.
The VPN Network Configuration window opens.
5.
Select Route Based VPN, click Next.
The Route Based VPN window opens.
Page 270 / 342
15
Working with VPNs
270
Nokia IP45 Security Platform User’s Guide v4.0
6.
Enter the information in the VTI fields using
Table 57
.
7.
Click Next and proceed as per the wizard prompts to complete the site creation.
For more information, see
“Completing Site Creation”
on page 268.
Deleting a VPN Site
You can delete a VPN site from IP45 Tele 8 and IP45 Satellite X.
To delete a VPN site
1.
Choose VPN from the IP45 main menu.
The VPN Server page opens.
2.
Click VPN Sites.
Table 57
Virtual Tunnel Interface fields
Field
Description
Tunnel Local
IP
Type a local IP address for the local end of VPN tunnel.
Tunnel
Remote IP
Type the IP address of the remote end of the VPN tunnel.
OSPF Cost
Type the cost of this link for dynamic routing purposes.
Default value: 10

Rate

3.5 / 5 based on 2 votes.

Popular Nokia Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top