Create a point-to-point VPN for a fixed IP Address

Source: Internet
Author: User

Create A point-to-point VPN for A fixed IP address of the network component. Create A point-to-point VPN for A fixed IP address of the network component router. one end of the network component router A is connected to the LAN. The internal IP address is 192.168.0.1, and its wan interface is connected to the Internet, and the fixed IP address and gateway and subnet mask provided by the ISP. One end of the network component router B is connected to the LAN with the internal IP address 192.168.0.1, and its wan interface is connected to the Internet. The fixed IP Address Provided by the ISP and the gateway and subnet mask are used to implement the VPN connection between the two networks, you can perform the following steps.
1. configure network component router A (1) log on to the management interface of network component router A: Enter http: // 192.168.0.1 In the IE Address Bar. On the displayed page, enter the login user name and password, log on to the Network Gateway Router, and set the IP address and subnet mask of the LAN interface and WAN interface, as well as the IP address of the gateway and DNS server. Www.2cto.com (2) on the left side of the toolbar, click VPN Settings-click the first VPN connection. Here, you can enter eight valid VPN connections and press the Edit button. The configuration in VPN Settings is shown below.

In the Connection Name box, enter a VPN channel Name, which is assumed to be to-Gateway B. in the Local IPSec Identifier Field, enter the Local identity authentication ID, this parameter must correspond to the Remote IPSec Identifier of the Peer end. 0.0.0.0 is used as the local identifier, the identity must be consistent with that of the remote Local IPSec Identifier. In this example, enter 0.0.0.0 as the remote identifier. In the Tunnel can be accessed from drop-down menu, select a subnet from local addres; in the Local LAN start IP Address field, enter the network segment of the Local LAN. In the Local LAN IPSubnetmask dialog box, enter the subnet mask; Select a subnet from local address from the Tunnel can access drop-down menu; in the Remote LAN Start IP Address dialog box, enter the Intranet address segment of the Peer (GatewayB; in the Remote LAN IPSubnetmask dialog box, enter the subnet mask of the LAN. In the Remote wan ip or FQDN dialog box, enter the IP address of the WAN interface of the Peer FVS318 Gateway B. (3) return to the VPN Settings interface. Note that you must select Enable in the new connection.
Ii. vrob B configuration (1) log on to the management interface of vrob B. It is similar to setting B as if. (2) Click VPN Settings-click the first VPN connection on the left of the toolbar, and click the Edit button. The following figure shows the Settings of VPN Settings-MAIN Mode.

In the Connection Name box, enter a vpn channel Name, which is assumed to be "to-Gateway A". In the Local IPSec Identifier Field, enter the Local identity authentication ID; the ID www.2cto.com must correspond to the Remote IPSec Identifier at the peer end. 0.0.0.0 is used as the local identifier. In Remote IPSec Identifier, enter a remote identity authentication representation. the identity must be consistent with that of the Remote IPSec Identifier. Assume that 0.0.0.0 is input as the remote identifier; in the Tunnel can be accessed from drop-down menu, select a subnet from local addres. In the Local LAN start IP Address field, enter the network segment of the Local LAN. In the local LAN IPSubnetmask dialog box, enter the subnet mask; select a subnet from local address from the Tunnel can access drop-down menu; in the Remote LAN Start IP Address dialog box, enter the address segment of the Intranet of the Peer (GatewayA; in the Remote LAN IPSubnetmask dialog box, enter the subnet mask of the LAN. In the Remote wan ip or FQDN dialog box, enter the IP address of the WAN interface of the Peer FVS318 Gateway;
3. Set the MAIN Mode for the VPN of the Network Gateway Router (1) from the Secure Association drop-down box, select Main Mode; (2) In Perfect Forward Secrecy, select Enabled to press the button; (3) in the Encryption Protocol drop-down dialog box, select 3DES Encryption mode. (4) In the PreShared Key dialog box, enter a unified sub-string sharing Key. Here, we assume that you enter netgear2004, you must enter the same password on the peer device; www.2cto.com (5) in the Key Life dialog box, enter 28800 seconds; (6) in the IKE Life dialog box, enter 86400 seconds; (7) If you want the NetBIOS data traffic to run from the VPN channel, select NETBIOS Enable in the front box. For example, to allow network neighbors in the Microsoft operating system to view the other's computer, you must select it; (8) Click the Apply button. All the configurations are stored in the device and then returned to the VPN Settings screen. (9) return to the VPN Settings interface. Note that you must select the Enable option in the new connection. After the VPN of the two routers is created, PING the host address of the Peer LAN on any computer on either side of the LAN. The connection will take about half a minute to prove that the VPN channel has established a connection. This article is from

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.