Establish Tunnel And Verify; Extranet Scenario - Firewall + Static Nat + Vpn For Vpn Traffic; Table 10.9. Inbound Un-Translated Firewall Rule For Vpn Packets On Isr1 - Asus Internet Security Router User Manual

Chapter 10. Configuring VPN
Field
NAT
Action
VPN
Note: The outbound Un-translated Firewall rule has to be added the existing rule ID 1001.

Table 10.9. Inbound Un-translated Firewall Rule for VPN Packets on ISR1

Field
Source IP
Destination IP
NAT
Action
VPN

10.6.1.3 Establish Tunnel and Verify

„ Ping continuously from a host in the LAN behind ISR1 to a host in the LAN behind ISR2. The first few
pings might fail. After a few seconds, the host in the LAN behind ISR1 should start getting ping
response.
10.6.2 Extranet Scenario – firewall + static NAT + VPN for VPN traffic
In case of the extranet scenario, the networks protected by the Internet Security Routers could be under
different administrative authorities. Hence, there is a possibility that the IP addresses of both networks are in
the same subnet. The typical extranet set up is shown in Figure 10.7.
100
Value
Mask 255.255.255.0
None
Allow
Enable
Value
Type Subnet
Address 192.168.1.0
Mask 255.255.255.0
Type Subnet
Address 192.168.2.0
Mask 255.255.255.0
None
Allow
Enable
Internet Security Router User's Manual