1. Home
    2. /
  2. Manuals
    3. /
  3. Option
    4. /
  4. GlobeSurfer-II
    5. /
  5. 21
Page 101 / 126 Scroll up to view Page 96 - 100
101
GlobeSurfer
®
II 1.8 - 7.2 - 7.2 S
REFERENCE MANUAL
‘Authentication Algorithm (for ESP protocol)’
Select the authentication algorithms that GlobeSurfer
®
II will attempt to use when
negotiating with the IPSec peer.
‘Hash Algorithm (for AH protocol)’
Select the hash algorithms that GlobeSurfer
®
II will attempt to use when negotiating with
the IPSec peer.
b. Manual key definition:
Figure 6.70 Manual key definition
‘Security Parameter Index (SPI): (HEX, 100 - FFFFFFFF)’
A 32 bit value that together with an IP address and a security protocol, uniquely identifies a
particular security association. The local and remote values must be coordinated with their
respective values on the IPSec peer.
‘Use Different Encryption Keys’
Selecting this option allows you to define both local and remote algorithm keys when
defining the IPSec protocol (in the next section). IPSec Protocol Select between the ESP
and AH IPSec protocols. The screen will refresh accordingly:
ESP – Select the encryption and authentication algorithms, and enter the algorithm
keys in hexadecimal representation.
AH – Select the hash algorithm, and enter the algorithm key in hexadecimal
representation.
‘Routing’
Define the connection’s routing rules. To learn how to create routing rules, please refer to
section 6.6.7.
3.
Click ‘OK’ to save the settings.
6.6.12.3 IPSec Gateway-to-Host Scenario Connection
In order to create an IPSec connection between GlobeSurfer
®
II and a Windows host, you need to configure both
the gateway and the host. This section describes both GlobeSurfer
®
II’s configuration and a Windows XP client
configuration.
6.6.12.3.1 Configuring IPSec on GlobeSurfer
®
II
1. Click ‘Connection settings’ icon on the sidebar followed by ‘Network Connections’, the ‘Network
Connections’ screen will appear (see Figure 6.71).
Page 102 / 126
102
GlobeSurfer
®
II 1.8 - 7.2 - 7.2 S
REFERENCE MANUAL
Figure 6.71 Network connections
2. Click the ‘New Connection’ link. The ‘New Connection’ screen will appear (see Figure 6.72).
Figure 6.72 New connection
3. Select the ‘Connect to a Virtual Private Network over the Internet’ radio button and click ‘Next’.
‘The Connect to a Virtual Private Network over the Internet’ screen will appear (see Figure 6.73).
Figure 6.73 Connect to a Virtual private Network over the Internet
4. Select ‘VPN client or point-to-point’ and click ‘Next’. The ‘VPN client or point-topoint’ screen will
appear (see Figure 6.74)
Page 103 / 126
103
GlobeSurfer
®
II 1.8 - 7.2 - 7.2 S
REFERENCE MANUAL
Figure 6.74 VPN client or point-to-point
5. Select ‘Internet protocol security (IPSec)’ and click ‘Next’. The ‘Internet protocol security (IPSec)’
screen will appear (see Figure 6.75).
Figure 6.75 Internet protocol security (IPSec)
6. On the ‘Internet protocol security (IPsec)’ screen configure to following parameters:
‘Host or IP address of the destination gateway’
Defines the IP address or host name of the remote tunnel end-point
‘Remote IP address’
Serves as the tunnel’s endpoint. The combo box offers the following options. Upon selection of an
option, the screen will refresh providing you with the appropriate fields for entering the data.
Same as Gateway - the default option that uses the gateway IP entered above. When
selecting this option, you must also select the encapsulation type, tunnel or transport, from
its combo box.
IP Address - a ‘Remote IP Address’ field will appear. Specify the IP address.
IP Subnet - ‘Remote Subnet IP Address’ and ‘Remote Subnet Mask’ fields will appear.
Specify these parameters.
IP Range - ‘From IP Address’ and ‘To IP Address’ fields will appear. Specify the IP range.
7. Enter the IPSec shared secret, which is the encryption key jointly decided upon with the network
you are trying to access.
8. Click ‘Next’. The ‘Connection Summary’ screen will appear (see Figure 6.76).
Page 104 / 126
104
GlobeSurfer
®
II 1.8 - 7.2 - 7.2 S
REFERENCE MANUAL
Figure 6.76 Connection summary
9. Check the ‘Edit the Newly Created Connection’ check box if you wish to be routed to the new
connection’s configuration screen after clicking Finish.
10. Click ‘Finish’ to save the settings.
The new IPSec connection will be added to the network connections list, and will be configurable like
any connection. Unlike other connections, it is also accessible via the GlobeSurfer
®
II’s ‘Advanced’
screen. To learn more about the configuration of an IPSec connection, please refer to section
6.6.12.1.
6.6.12.3.2 Configuring IPSec on the Windows Host
The following IP addresses are needed for the host configuration:
Windows IP address - referred to as <windows ip>.
GlobeSurfer
®
II WAN IP address - referred to as <GlobeSurfer
®
II wan ip>.
GlobeSurfer
®
II LAN Subnet address - referred to as <GlobeSurfer
®
II lan subnet>.
The configuration sequence:
1.
The first step is to create the IPSec Policy:
a.
Click the Start button and select Run. Type ”secpol.msc” and click ‘OK’. The ‘Local Security
Settings’ window will appear (see Figure 6.77).
Figure 6.77 Local security settings
b.
Right-click the ‘IP Security Policies on Local Computer’ and choose ‘Create IP Security
Policy...’. The IP Security Policy Wizard will appear (see Figure 6.78).
Page 105 / 126
105
GlobeSurfer
®
II 1.8 - 7.2 - 7.2 S
REFERENCE MANUAL
Figure 6.78 IP Security Policy Wizard
c.
Click ‘Next’ and type a name for your policy, for example ” GlobeSurfer
®
II Connection” (see
Figure 6.79). Click ‘Next’.
Figure 6.79 Security Policy Name
d. Deselect the ‘Activate the default response rule’ check box (see Figure 6.80) and click ‘Next’.
Figure 6.80 Requests for Secure Communication

Rate

4 / 5 based on 2 votes.

Popular Option Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top