TP-Link Archer D2 Router Manual PDF (Setup & Configuration Guide)

Page 81 / 119 Scroll up to view Page 76 - 80

77

Chapter 12

Specify Your Network Settings

Router 2 and then to the Server, so the default gateway should

be 192.168.1.2.

•

Interface:

Determined by the port (WAN/LAN) that sends

out the data packets. In the example, the data is sent to the

gateway through the LAN port, so LAN should be selected.

5°

Check to enable this entry and click

OK

to save the settings.

Open a web browser on your PC. Enter the company server’s IP

address to visit the company network.

12° 6°

Set up a

VPN Connection

VPN (Virtual Private Network) is a private network established across the public network,

generally via the Internet. However, the private network is a logical network without

any physical network lines, so it is called Virtual Private Network.

With the wide application of the Internet, more and more data are needed to be shared

through the Internet. Connecting the local network to the Internet directly, though can

allow the data exchange, will cause the private data to be exposed to all the users on

the Internet.

The VPN (Virtual Private Network) technology is developed and used to establish

the private network through the public network, which can provides a secure

communication to a remote computer or remote network, and guarantee a secured

data exchange. IPSec is one of the major implementations of VPNs.

Establish an IPSec VPN tunnel to connect two LANs via Internet so

that the hosts in different remote LANs are able to communicate

with each as if they are in the same LAN.

For example

, I am the network administrator of a regional office,

I need to let my office staff can visit the headquarter’s servers

and resources, and vice versa. I know that the modem router

in my office and the device in headquarter both support IPSec

VPN feature, so I decide to set up a VPN connection with the

headquarter office.

The following diagram is a typical VPN topology. Here Site A

refers to regional office’s network (local network). And Site B

refers to the headquarter’s network (remote network) which I

want to connect.

Done!

I want to:

Page 82 / 119

78

Chapter 12

Specify Your Network Settings

Modem router 1

LAN: 192.168.1.1

WAN: 219.134.112.246

PC 1

Subnetmask: 255.255.255.0

WAN: 219.134.112.247

Modem Router 2

PC 2

LAN: 192.168.2.1

Subnetmask: 255.255.255.0

Site A

Site B

1°

Make sure of the topology you want to build and record site

A (local network) and site B (remote network)’s LAN IP and

WAN IP.

2°

Configuration on site A (local network).

1 ) Visit

http://tplinkmodem.net

, and log in with the password

you set for the modem router.

2 ) Go to

Advanced

>

Network

>

IPSec VPN

to open the

configuration page. Click

Add

to set up a VPN tunnel.

How can I

do that?

Page 83 / 119

79

Chapter 12

Specify Your Network Settings

3 ) In the

IPSec Connection Name

column, specify a name.

4 ) In the

Remote IPSec Gateway (URL)

column, Enter Site B’s

WAN IP address.

5 ) To configure

Site A’s LAN

:

In the

Tunnel access from local IP addresses

column, here we

take

Subnet Address

as an example. Then input the LAN IP

range of Site A in the

IP Address for VPN

column, and input

Subnet Mask

of Site A.

6 ) To configure

Site B’s LAN

:

In the

Tunnel access from local IP addresses

column, here we

take

Subnet Address

as an example. Then input the LAN IP

range of Site B in the

IP Address for VPN

column, and input

Subnet Mask

of Site B.

7 ) Select the

Key Exchange Method

for the policy. We select

Auto(IKE)

here.

Page 84 / 119

80

Chapter 12

Specify Your Network Settings

8 ) Enter the

Pre-Shared Key

for IKE authentication. Then

keep

Perfect Forward Secrecy

enabled.

Note:

The key should consist of visible characters without blank space.

Make sure Site A and Site B use the same key.

9 ) Leave the

Advanced

Settings as default value. Then click

OK

to save.

3°

Configuration on Site B (remote network). Refer to step 2

configuration on Site A and make sure that Site A and Site B

use the same

pre-shared keys

and

Perfect Forward Secrecy

settings.

4°

The

Status

column will change to

UP

if the VPN connection

has been set up successfully.

5°

Check the VPN connection. You can ping site B’ LAN IP

from your computer in site A to verify that the IPSec VPN

connection is set up correctly.

Tips:

To check the VPN connection, you can do the following.

On the host in Site A, press

[Windows Logo]

+

[R]

to open Run dialog. Input “

cmd

”

and hit

OK.

a .

In the CLI window, type in “ping 192.168.2.x” (“192.168.2.x”

can be IP address of any host in Site B). Then press [Enter].

Page 85 / 119

81

Chapter 12

Specify Your Network Settings

If Ping proceeds successfully (gets replies from host in Site B),

the IPSec connection is working properly now.

Now IPSec VPN is implemented to establish a connection.

Note:

1. The product supports a maximum of ten simultaneous connections.

2.

If one of the site has been off line for a while, for example, if Site A has been disconnected, on Site B you need to

click

Disable

and then click

Enable

after Site A back on line in order to re-establish the IPSec tunnel.

12° 7°

Set Up the IPv6 Tunnel

The IPv6 Tunnel feature helps you obtain IPv6 resources based on an IPv4 WAN

connection or vice versa.

IPv6 Tunnel is a transition mechanism that enables IPv6-only hosts to reach IPv4

services or vice versa and allows isolated IPv6 hosts and networks to reach each other

over IPv4-only infrastructure before IPv6 completely supplants IPv4. It is a temporary

solution for networks that do not support native dual-stack, where both IPv6 and IPv4

run independently.

The modem router provides three tunneling mechanisms:

6to4

,

6rd

and

DS-Lite

. The

way to set up 6rd and DS-Lite tunnel are similar.

12° 7° 1°

Use the Public IPv6 Tunnel Service-6to4

The 6to4 tunnel is a kind of public service. If there is any 6to4 server in your network,

you can use this mechanism to access IPv6 service. If your ISP provides you with an

IPv4-only connection but you want to visit IPv6 websites

,

you can try to set up a 6to4

tunnel.

Done!

Rate

Popular TP-Link Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share