Table of Contents
Advertisement
DFL-900/1500 User Manual
As described in the Figure 2-1, we will extend to explain how to make a VPN link between LAN_1 and LAN_2 in this
chapter. The following Figure 13-1 is the real structure in our implemented process.
13.1 Demands
1.
When a branch office subnet LAN_1 wants to connect with another branch office subnet LAN_2 through the public
Internet instead of the expensive private leased lines, VPN can provide encryption and authentication to secure the tunnel
that connects these two LANs.
Figure 13-1 Organization_1 LAN_1 is making VPN tunnel with Organization_2 LAN_2
13.2 Objectives
1.
Let the users in LAN_1 and LAN_2 share the resources through a secure channel established using the public Internet.
13.3 Methods
1.
Separately configure DFL-1 and DFL-2 which are the edge gateways of LAN_1 and LAN_2 respectively. You have to
determine a key management method between IKE (Internet Key Exchange) and Manual Key. The following table
compares the settings between IKE and Manual Key. In the following, we will describe them separately.
"Local Address" means the local LAN subnet; "Remote Address" means the remote LAN subnet; "My IP
Address" means the WAN IP address of the local VPN gateway while the "Peer's IP Address" means the
Same
WAN IP address of the other VPN gateway.
Virtual Private Network – IPSec
This chapter introduces IPSec VPN and explains how to implement it.
IKE
107
Virtual Private Network – IPSec
Chapter 13
Manual Key
Chapter 13
Advertisement
Table of Contents
Troubleshooting
