D-Link DFL-500 Network Card User Manual

Open as PDF

of 122

DFL-500 User Manual

Configuring the VPN concentrator

On the VPN concentrator network, you must create one VPN tunnel for each of the prospective VPN

concentrator members and then add these tunnels to a VPN concentrator. You can add both AutoIKE and

manual key VPN tunnels to a VPN concentrator.

Encrypt policies control the direction of traffic through the VPN concentrator. You must create a separate

encrypt policy for each VPN added to the concentrator. These policies allow inbound and outbound VPN

connections between the concentrator and the member VPN tunnels. The encrypt policy for each member

VPN tunnel must include the member VPN tunnel name.

To configure the VPN concentrator:

• Add the required number of remote gateways.

Each AutoIKE key tunnel requires a remote gateway.

See Adding a remote gateway

•

Add the required number of AutoIKE key VPN tunnels and include the remote gateways added in

step 1.

See Adding an AutoIKE key VPN tunnel

•

Add the required number of manual key VPN tunnels.

See Adding a manual key VPN tunnel

• Add a VPN concentrator that includes the tunnels added in steps 2 and 3.

See Adding a VPN concentrator

•

Add one encrypt policy for each member VPN. Use the following configuration for each policy:

Source

VPN concentrator address.

Destination

Member VPN address.

Action

ENCRYPT

VPN Tunnel

The member VPN tunnel name.

Allow inbound

Select allow inbound.

Allow outbound

Select allow outbound

Inbound NAT

Select inbound NAT if required.

Outbound NAT

Select outbound NAT if required.

See Adding an encrypt policy.

Configuring the member VPNs

For each member VPN, you must create a VPN tunnel to the VPN concentrator network. This tunnel can be

an AutoIKE key or manual key tunnel.

You must create an encrypt policy that allows inbound and outbound VPN connections between the member

VPN and the concentrator.

You must create additional encrypt policies that allow inbound and outbound VPN connections between each

of the member VPNs.

The policy between the member VPN and the concentrator must be arranged in the policy list above the

policies between member VPNs. Each encrypt policy must include the same tunnel name.

To configure each member VPN:

•

Add a remote gateway if you are adding AutoIKE key tunnels.

See Adding a remote gateway

•

Add an AutoIKE key VPN tunnel and include the remote gateway added in step 1.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

D-Link DFL-500 Network Card User Manual