VPN
This example will demonstrate how to create a Virtual private Network (VPN) between two remote locations through the Internet. The VPN policy will use 3DES IPSec to securely send/receive encrypted data over the Internet. When the VPN tunnel is enabled, the two offices will virtually appear to be on the same local network.
This example will consist of two DI-804V VPN Routers with a simple setup. The two remote offices in this example will be known as Office A and Office B. Both VPN Routers must already be set up and able to access each other. This is only an example, your setup will vary using the WAN IP address provided by your ISP.
Please note the differences in the IP addresses for each office.
We will begin by configuring the DI-804V at Office A. Start by going into VPN Settings under the Basic Setup menu.
Step 1. In the Connection Name field, type in OfficeA. Click ADD.
Step 2. A properties screen will appear for the new connection you have made. Fill in the appropriate information for Office A:
Connection Name: OfficeA
Local IPSEC Identifier: Local
Remote IPSEC Identifier: Remote
Remote IP Network: 192.168.1.0
Remote IP Netmask: 255.255.255.0
Remote Gateway IP: 192.170.0.2
Network Interface: WAN ETHERNET
Secure Association: IKE
Perfect Forward Secure: Enabled
PreShared Key: 123456
Key Life: 28800
IKE Life Time: 3600
Step 3 Click SAVE. There should now be a VPN policy created for Office A. Now you will want to Save & Restart the DI-804V.
Note: 123456 is an example of a preshared key, please fill in any secret preshared key you desire. Keep in mind that both sites require the same preshared key.
Office A setup is now complete, we will now configure Office B with the other DI-804V, Follow the same steps previously with Ofice A to create a VPN policy.
Step 1 Please change the appropriate information.
Connection Name: OfficeB
Local IPSEC Identifier: Local
Remote IPSEC Identifier: Remote
Remote IP Network: 192.168.0.0
Remote IP Netmask: 255.255.255.0
Remote Gateway IP: 192.170.0.1
Network Interface: WAN ETHERNET
Secure Association: IKE
Perfect Forward Secure: Enabled
PreShared Key: 123456
Key Life: 28800
IKE Life Time: 3600
Step 2 Click SAVE. There should now be a VPN policy created for Office B. Now you will want to Save & Restart the DI-804V.
After the VPN policies have been created for the two Offices, the two remote locations should authenticate and connect. To view the status of the VPN connection, go to the Device Status menu. On the bottom-left side of the menu, click on the VPN Status icon.
A VPN Status pop-up screen will appear showing VPN connection status. If a VPN tunnel is active, the State should indicate Q-Estab.
Go to a DOS prompt and ping the internal IP address of the remote network.
×