Multi-Tech Systems S000573A Manual

next previous



UsingtheRouter’sWebInterface  32



DefiningVirtualPrivateNetworks(VPNs)

YourroutersupportsVPNtunnelsforsecureLAN‐to‐LANaccess.TosetupaVPNthroughyourrouter:

1. Fromthenavigationpane,selectTunnels,IPsecTunnels.

2. Inthepanethatopens,clickAddTunnel.Aseriesofwizardpanelshelpsyouconfiguretheconnection.

3. Inthefirstpa

nel,enterthefollowinginformation:

 IntheNamefield,typeanamefortheconnection.

 Ifdesired,intheDescriptionfield,typeadescriptionfortheconnection.

 ClickNext.

4. Inthenextpanel:

 IntheRemoteWANIPfield,typetheIPaddressoftheremoteWAN.

 IntheSavedNetworkdrop‐downlist,selectthedesirednetwork.Otherwiseyoucanmanuallydefine

thenetworkbycompletingtheNetworkRouteandNetworkMaskfields.

 ClickNext.

5. Inthenextpanel:

 InthePre‐SharedKeyfieldtypethepre‐sharedkeythatisagreeduponandsharedbytheVPN

endpoints.Youmustconfigurethiskeyatbothendpointsofthetunnel.

 FromtheEncryptionMethoddrop‐downlist,selecttheencryptionmethod.3DESisrecommended.

Optionsinclude3DES,AES‐128,AES‐192,AES‐256.

 IntheIKELifeTimefield,typethedurationforwhichtheISAKMPsecurityassociation(SA)lasts,from

successfulnegotiationtoexpiration.Thedefaultvalueisonehourandthemaximumis8hours.

 IntheKeyLifefield,typethedurationforwhichtheIPSecSAlasts,fromsuccessfulnegotiationto

expiration.Thedefaultvalueisonehourandthemaximumis24hours.

 IntheMaxRetriesfield,typethenumberofretriesfortheIPSectunnel.Enterzeroforunlimited

retries.

 ToenabletheLocalIDandRemoteID,checkEnableUID(UniqueIdentifierString).Thenenterlocal

IDandremotestringidentifiers:

 LocalID,typeastringidentifierforthelocalsecuritygateway.

 RemoteID,typeastringidentifierfortheremotesecuritygateway.

 ToenableIPCOMP,thecompressionalgorithm,checkCompression.

 ToenablePerfectForwardSecrecy(PFS),aconceptinwhichthenewlygeneratedkeysareunrelated

totheolderkeys,checkPerfectForwardSecrecy.

 ClickFinish.