59
Gateway Two is located at the sales office and is configured with
the following settings:
■ Internet IP address: 174.27.34.202
■ LAN IP address: 192.168.2.1
■ Remote Subnet Mask: 255.255.255.0
To set up an IPSec Connection between the two Gateways, do
the following on each Gateway:
1 Select IPSec Enabled from the VPN Mode screen.
2 Switch to the VPN Connections screen and click New.
3 In the Connection Name field enter: headsales
4 In the Description field enter: Connection between head office
and sales office.
5 Ensure that the Gateway to gateway radio button is selected.
6 Enter the Internet IP address of the Gateway you are configuring
in the This Gateway’s ID field.
a Enter 174.19.201.162 on Gateway One.
b Enter 172.27.34.202 on Gateway Two.
7 Enter the Internet IP address of the other Gateway in the Remote
IPSec Server Address field.
a Enter 174.27.34.202 on Gateway One.
b Enter 172.19.201.162 on Gateway Two.
8 Enter the IP address of the other LAN subnet in the Remote
Network address field.
a Enter 192.168.2.0 on Gateway One.
b Enter 192.168.1.0 on Gateway Two.
9 The Remote Subnet Mask is a default setting of 255.255.255.0.
10 Enter a password in the Tunnel Shared Key field in both
Gateways. The example uses TYP0249//23b as the shared key.
11 Choose DES as the Encryption Type.
12 Choose SHA-1 as the Hash Algorithm.
13 Choose Diffie-Hellman Group 1 (768 bit) the in the Exchange
keys using drop-down box.
14 Ensure that the Use Perfect Forward Secrecy box is checked
15 Click Apply to save your changes or Close to return without
saving.
L2TP over IPSec Connections
If you have selected L2TP over IPSec as your Tunnel Type, enter
the following values. See Figure 55
:
■ Password — The password that will need to be supplied to
connect.
Figure 55 L2TP over IPSec Connections
dua08 569-5aaa02.book Pag e 59 Thursday , Novem ber 7 , 2002 3:09 PM