Nov 06

This example will demonstrate how to create a Virtual private Network (VPN) between two remote locations through the Internet. The VPN policy will use 3DES IPSec to securely send/receive encrypted data over the Internet. When the VPN tunnel is enabled, the two offices will virtually appear to be on the same local network.

DI-804HV-back

This example will consist of two DI-804HV VPN Routers with a simple setup. The two remote offices in this example will be known as Office A and Office B. Both VPN Routers must already be set up and able to access each other. This is only an example, your setup will vary using the WAN IP address provided by your ISP.

Please note the differences in the IP addresses for each office.

We will begin by configuring the DI-804HV at Office A. Start by going into VPN Settings under the Basic Setup menu.

Step 1: In the Connection Name field, type in OfficeA. Click ADD.

Step 2: A properties screen will appear for the new connection you have made. Fill in the appropriate information for Office A:

di_804hv_ris4_nastroyka

  • Connection Name: OfficeA
  • Local IPSEC Identifier: Local
  • Remote IPSEC Identifier: Remote
  • Remote IP Network: 192.168.1.0
  • Remote IP Netmask: 255.255.255.0
  • Remote Gateway IP: 192.170.0.2
  • Network Interface: WAN ETHERNET
  • Secure Association: IKE
  • Perfect Forward Secure: Enabled
  • PreShared Key: enter key (123456 in this example)
  • Key Life: 28800
  • IKE Life Time: 3600

Step 3: Click SAVE. There should now be a VPN policy created for Office A. Now you will want to Save & Restart the DI-804HV.

Note: PreShared Key must be the same on both routers.

Office A setup is now complete, we will now configure Office B with the other DI-804HV, Follow the same steps previously with Ofice A to create a VPN policy.

Step 1: Please change the appropriate information.

  • Connection Name: OfficeB
  • Local IPSEC Identifier: Local
  • Remote IPSEC Identifier: Remote
  • Remote IP Network: 192.168.0.0
  • Remote IP Netmask: 255.255.255.0
  • Remote Gateway IP: 192.170.0.1
  • Network Interface: WAN ETHERNET
  • Secure Association: IKE
  • Perfect Forward Secure: Enabled
  • PreShared Key: enter desired key (123456 in this example)
  • Key Life: 28800
  • IKE Life Time: 3600

di_804hv_ris8_nastroyka

Step 2: Click SAVE. There should now be a VPN policy created for Office B. Now you will want to Save & Restart the DI-804HV.

After the VPN policies have been created for the two Offices, the two remote locations should authenticate and connect. To view the status of the VPN connection, go to the Device Status menu. On the bottom-left side of the menu, click on the VPN Status icon.

A VPN Status pop-up screen will appear showing VPN connection status. If a VPN tunnel is active, the State should indicate Q-Estab.

Go to a DOS prompt and ping the internal IP address of the remote network.

Be Sociable, Share!

Tags: , ,

No Comments


(Required)
(Required, will not be published)

css.php