1. Home
    2. /
  2. Manuals
    3. /
  3. Nokia
    4. /
  4. IP45
    5. /
  5. 58
Page 286 / 342 Scroll up to view Page 281 - 285
15
Working with VPNs
286
Nokia IP45 Security Platform User’s Guide v4.0
To specify configuration
8.
If you chose Specify Configuration in the preceding procedure, the following window
opens.
9.
Enter the destination network address and subnet mask of the site to connect to.
Note
Obtain destination network and subnet mask from the VPN gateway system
administrator.
10.
Click Next.
The Site Name dialog box appears.
11.
Enter a name for the VPN site.
12.
Click Next.The VPN Site Created window opens.
13.
Click Finish.
14.
Click the VPN Login tab.
Log in if you need to authenticate each time a VPN tunnel is created.
Page 287 / 342
Nokia IP45 Site-to-Site VPNs support
Nokia IP45 Security Platform User’s Guide v4.0
287
All of the computers connected to the LAN network of the Nokia IP45 Tele 8 user must
manually log in with the same user name and password on all of the login pages of the
connected computers.
Note
The Automatic Login feature is not available for the IP45 Tele 8 license.
To download configuration
1.
From the VPN Network Configuration page, choose Download Configuration in Adding
VPN sites by using IP45 Tele 8. A dialog box appears.
2.
Click Next, the Network Topology is downloaded from the specified VPN gateway.
The VPN Login page opens.
3.
Follow steps 9 to 13 in
“To specify configuration”
on page 286, to proceed.
The VPN sites page updates with the added VPN sites. If you edited a VPN site, the
modifications are reflected in the VPN sites list.
To route all traffic
If you chose Route All Traffic in Adding VPN sites by using the IP45 Tele 8, the VPN Network
Configuration dialog box appears with the following message:
Only one VPN Profile can be configured as Route All Traffic.
1.
Check either Download Configuration or Specify Configuration, depending on how you
want to obtain the VPN network configuration.
2.
Follow steps 9 to 13 in
“To specify configuration”
on page 286, to proceed.
Nokia IP45 Site-to-Site VPNs support
The following sections describe site-to-site VPNs, and the modes they support.
Adding VPN Sites by Using Nokia IP45 Satellite X
You can define each VPN site according to the function you want IP45 Satellite X to perform
while connecting to the site:
±
VPN Client
—define the VPN site as a remote access VPN site using the following
procedure.
±
VPN Gateway
—do the following:
±
Define the second VPN site as a site-to-site VPN gateway by using the following
procedure.
±
Define the first VPN site as a site-to-site VPN gateway.
Page 288 / 342
15
Working with VPNs
288
Nokia IP45 Security Platform User’s Guide v4.0
To add or edit VPN sites by using Nokia IP45 Satellite X
1.
Choose VPN from the main menu.
The VPN Server page opens.
2.
In the VPN submenu, click VPN Sites.
The VPN Sites page opens with a list of VPN sites.
3.
Do either of the following:
±
To add a VPN site, click New Site.
±
To edit a VPN site, click Edit in the desired VPN site row.
The IP45 VPN Site wizard opens, with the Welcome to the VPN Site wizard window is
displayed.
4.
Do one of the following:
±
Select Remote Access VPN to establish remote access from your VPN client to a VPN
server or gateway.
±
Select Site-to-Site VPN to create a permanent bidirectional connection to another
gateway.
5.
Click Next.
The VPN Gateway Address dialog box appears.
6.
Enter the IP address of the VPN gateway to connect, as given to you by the network
administrator.
7.
Click Next.
8.
The VPN Network Configuration dialog box appears. To proceed, see
“Setting Up the Nokia
IP45 Security Platform as a VPN Server”
on page 259.
9.
Choose Reports > VPN tunnels to view the active VPN tunnels with Phase-I negotiation.
10.
In order to see the Phase-II negotiation choose Reports > Active Connections and click the
lock symbol of the FTP, HTTPS, or SSH traffic passing through the VPN tunnel.
Page 289 / 342
Nokia IP45 Tele to IP45 Satellite X (VPN Client to Gateway)
Nokia IP45 Security Platform User’s Guide v4.0
289
Nokia IP45 Tele to IP45 Satellite X (VPN Client to Gateway)
Nokia IP45 Tele 8 functions in VPN client mode, in which connection is initiated by the VPN
client.
Nokia IP45 Tele 8 uses a manual mode VPN connection. To select the VPN gateway to which
you want to establish a VPN connection, go to http://my.vpn.
Figure 13
IP45 Tele 8 as VPN Client
If the VPN client is enabled, the IP45 GUI main menu includes a VPN menu option. In addition,
the Reports pages include VPN Tunnels submenu that allows you to view the active VPN
tunnels.
Setting Up Nokia IP45 Tele 8
Configure a VPN tunnel between an IP45 Tele 8 and an IP45 Satellite X.
Setting Up Nokia IP45 Satellite X
Configure a VPN tunnel between a Nokia IP45 Tele 8 and an Nokia IP45 Satellite X.
To set up Nokia IP45 Satellite X
1.
Add a User.
2.
Enable VPN remote access for the user you added.
3.
Enable the VPN server.
Nokia IP45 Tele 8 to Check Point FP1, FP2, FP3, NG, NG AI,
NGX R60 or NGX R61
You can use the IP45 Tele 8 as a VPN client to establish a Remote to Site VPN connectivity with
a Check Point server by using version 4.1, FP1, FP2, FP3, NG, NG AI, NGX R60 and NGX R61.
For more information, see related Check Point documentation.
Nonroutable IPs
network 1
Nonroutable IPs
network 2
Initiate VPN Session/ Tunnel
IP45 Tele
IP45 Satellite
Page 290 / 342
15
Working with VPNs
290
Nokia IP45 Security Platform User’s Guide v4.0
Setting Up Nokia IP45 Tele 8
Configure a VPN tunnel between an IP45 Tele 8 and an IP45 Satellite X.
Setting Up Check Point Server
Open the Check Point policy editor and select the Firewall-1/ VPN -1 workstation object that
will receive the VPN-1 Edge/Embedded gateway session request.
For more information, see Check Point FP3 documentation.
Nokia IP45 Tele 8 to Check Point NG AI
You can use Nokia IP45 Tele 8 as a VPN client to establish a VPN connectivity with a Check
Point NG AI server using a VPN-1 Edge/Embedded gateway dynamic object. This topology
uses a remote-access VPN community.
IP45 Tele 8 uses a manual-mode VPN connection only. To select the VPN gateway to establish a
VPN connection, go to http://my.vpn.
Setting Up Nokia IP45 Tele 8
To configure a VPN tunnel between Nokia IP45 Tele 8 and Check Point FP3, on IP45 Tele 8,
(VPN client) add a VPN site.
Setting Up Check Point NG AI
Configure a VPN-1 Edge/Embedded gateway object on the Check Point Smart Dashboard.
To set up Check Point NG AI
1.
Create a gateway by choosing Check Point > VPN-1 Edge/Embedded gateway.
2.
Create a user and add the user to the VPN users group.
3.
Create a remote access VPN community.
±
Include NG AI firewall object in the participating gateway.
±
Include the Users group in the participating users.
4.
In the policy editor, create a rule with the following parameters:
Source User: any
Destination: any
Through: remote access community
Target: NG AI firewall object

Rate

3.5 / 5 based on 2 votes.

Popular Nokia Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top