Wednesday, February 2, 2011

How to Configure VPN



VPN Configuration
Gateway to Gateway VPN Configuration:
Figure showing VPN connection between two routers in different LAN, may be different place or different country.



To configure this you have to configure flowing values on both routers.
Tunnel No.
// Chose your Tunnel No.


Tunnel Name

Interface

Enable


Local Group Setup

Local Security Gateway Type

IP address
. . . //This is your router WAN IP

Local Security Group Type

IP address
. . .

Subnet Mask
. . .


Remote Group Setup

Remote Security Gateway Type

. . . // This is Remote Router WAN IP

Remote Security Group Type

IP address
. . .

Subnet Mask
. . .


IPSec Setup

Keying Mode

Phase1 DH Group

Phase1 Encryption

Phase1 Authentication

Phase1 SA Life Time
seconds




Perfect Forward Secrecy

Phase2 DH Group

Phase2 Encryption

Phase2 Authentication

Phase2 SA Life Time
seconds

Preshared Key
// Chose this on HEX or arbitrary
If you follow above instruction, I think you will reach the goal.
N.B: IPSec Setup portion can vary on different brand router. Also vary the format of configuration. But the major things you should in mind that the local gateway and work group IP and Remote Gateway and work group IP you have to configure. To make the tunnel secure give an Preshared Key.
Client To Gateway VPN Configuration:
If you try to reach your office internal LAN for do job from abroad you have to configure Client to Gate VPN configuration.


Tunnel
Group VPN

Tunnel No.

Tunnel Name

Interface

Enable


Local Group Setup

Local Security Gateway Type

IP address
. . . //Your Local Router Gateway IP

Local Security Group Type

IP address
. . . // Local work Group IP

Subnet Mask
. . .


Remote Client Setup

Remote Client

. . . // Remote Laptop or PC IP


IPSec Setup

Keying Mode

Phase1 DH Group

Phase1 Encryption

Phase1 Authentication

Phase1 SA Life Time
seconds

Perfect Forward Secrecy

Phase2 DH Group

Phase2 Encryption

Phase2 Authentication

Phase2 SA Life Time
seconds

Preshared Key
// Chose this on HEX or arbitrary
The above format of configuration may vary on different brand Router. But you have to configure Local Router gateway IP , Local User group IP and Remote Laptop/PC IP.

No comments:

Post a Comment