Table of Contents
Advertisement
Tick the boxes of "Accept unsecured communication, but
always respond using IPsec" and "Use session key
perfect forward secrecy (PFS)".
Click Add.
In the New Security Method dialog box, select Custom
and then click Settings.
In the Custom Security Method Settings dialog
box, follow the steps below:
Click OK.
Click OK to complete the settings.
Select "New Filter Action" from the Filter Actions.
In the New Rule Properties dialog box, click the Authentication
Methods tab. Next, select "Kerberos" from the Authentication
method preference order and then click Edit.
In the Edit Authentication Method Properties dialog box,
follow the steps below:
Tick the box of "Use this string (preshared key)" and enter
"123456789" in the corresponding field.
Click OK to complete the settings.
Select "Preshared Key" from the Authentication method
preference order.
In the New Rule Properties dialog box, click the Tunnel Setting
tab:
Select the radio box of "Tunnel endpoints are specified by
these IP addresses".
Specify the IPv4 tunnel endpoint. i.e., 61.11.11.11.
In the New Rule Properties dialog box, click the Connection Type
tab:
Tick the box of "All network connections".
Click Apply.
Click OK to complete the settings.
Select "VPN_B Local To Remote" from the IP Security rules.
Gigabit Multi-Homing VPN Security Gateway
Tick the box of "Data integrity and encryption
(ESP)".
Integrity algorithm: Select "MD5".
Encryption algorithm: Select "3DES".
Under the Session key settings section, type
in "3600" in the seconds field for the key
generation interval.
Click OK.
200
MH-2300
Advertisement
Table of Contents
