Table of Contents
Advertisement
Step 6. Tick the radio box of "Use both algorithms" in the IPSec Settings
section, select "3DES" for Encryption Algorithm and "MD5" for
Authentication Algorithm.
Step 7. In the Advanced Settings (Optional) section, select "DH 1" for PFS
Key Group, enter "3600" in the ISAKMP SA Lifetime field and
"28800" in the IPSec SA Lifetime field.
Step 8. Select "Aggressive mode" for IKE Negotiation as well as enter
"11.11.11.11" in the Local ID field and "@abc123" in the Peer ID field.
The Local ID / Peer ID field can be:
Left blank to use the public IP.
Specified with a valid IP; the two fields cannot be identical, e.g.,
"11.11.11.11" and "22.22.22.22".
Specified with a leading at-sign (@) followed by an alphanumeric string,
e.g., "@123a" or "@abcd1".
Step 9. The IPSec autokey rule is successfully added.
Step 10.
Under Policy Object > VPN > Trunk, set as shown below:
Name: Specify a name for the VPN trunk.
Local Settings: Select "LAN" for Interface and specify the subnet
and netmask of Company A.
Remote Settings: Specify the subnet and netmask of Company
B.
Select "VPN_A" from the Available Tunnels column on the left,
and the click Add.
Tick the box of "Enable NetBIOS Broadcast over VPN".
IPSec Algorithm Settings
Advanced Settings
IKE Negotiation Settings
IPSec Autokey Rule Successfully Added
234
Gigabit Multi-Homing VPN Security Gateway
MH-2300
Advertisement
Table of Contents
