Configuring The Vpn Client; Manual Key Exchange Ipsec Vpn Between Two Networks - D-Link DFL-1000 User Manual

Hide thumbs Also See for DFL-1000:

Quick install manual (6 pages)

Quick install manual (9 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

Table of Contents

between the VPN client and the VPN gateway that is destined for the internal network is routed across

the Internet in the VPN tunnel.

Example VPN Gateway policy configuration

Description

Source IP

The Internal IP address

address

Destination IP

The Internet IP address of the client

Address

Addresses).

VPN Tunnel

The name of the VPN tunnel to be created between the VPN gateway and the

Name

VPN client

Complete the following procedure on the VPN gateway to add the VPN policy:

•

Go to VPN > IPSEC > Policy .

•

Click New to add a new IPSec VPN policy.

•

Select the Source IP address, Destination IP address, and the VPN tunnel to add to the IPSec VPN

policy.

•

Click OK to save the VPN policy.

Configuring the VPN client

The VPN client PC must be running industry standard IPSec Autokey IKE VPN client software. D-Link

recommends the SafeNet/Soft-PK client from IRE, Inc.

Configure the client as required to connect to the VPN gateway using an IPSec VPN configuration. Make

sure the client configuration includes the settings in

match the VPN Gateway configuration.

VPN client configuration

Description

VPN Tunnel Name Should correspond to the VPN tunnel name used on the VPN gateway.

Remote Gateway

The External IP address of the VPN gateway.

Keylife

The Client key life should match the VPN gateway key life.

Authentication

The Client authentication key should match the VPN gateway authentication

Key

key.

Manual key exchange IPSec VPN between two networks

DFL-1000 IPSec VPNs can be configured to use Autokey IKE and manual key exchange. In most cases

the Autokey key exchange is preferred because it is easier to configure and maintain. However, manual

key exchange may be necessary in some cases for compatibility with third party VPN products.

Use the following procedures to configure a VPN between two internal networks protected by VPN

gateways that use manual key exchange (for an example, see

networks). Each internal network can be protected by a DFL-1000 VPN gateway or one of the networks

can be protected by a third-party VPN gateway.

This section describes:

•

Configuring the VPN tunnel

•

Adding internal and external addresses

DFL-1000 User's Manual

(See Example VPN Gateway IP

(See Example VPN Tunnel

Addresses).

configuration).

VPN client

configuration. These settings should

Example VPN between two internal

Example

setting

Main_Office

VPN_Client

Client_VPN

Example

Setting

Client_VPN

1.1.1.1

100

ddcHH01887d

Table of Contents

Configuring The Vpn Client; Manual Key Exchange Ipsec Vpn Between Two Networks - D-Link DFL-1000 User Manual

Configuring the VPN client

Manual key exchange IPSec VPN between two networks

Related Manuals for D-Link DFL-1000

Related Content for D-Link DFL-1000

Table of Contents