Experimental environment:
Company game online, need to build a VPN channel for authentication and billing system for different areas of internal communications, as well as daily maintenance server is also through VPN connection. To achieve a secure encrypted environment
Solution: Using juniper netscreen SSG140-SB automatic VPN function to solve this problem, because to set up a lot of points, setting almost all the same, to Shanghai room and Changchun room to do an example
The steps are as follows:
1. Define Trust and Untrust interface IP address.
2. Generate communication IP address segments for local and remote ends.
3. Define a remote gateway
4. Create "Automatic key IKE VPN".
5. Set the default route to the external router.
6. Configure the policy.
Experiment diagram
WebUI (Shanghai IDC)
1. Interface
Network > Interfaces > Ethernet0/0àedit Click OK after entering the following:
Zone Name:trust
Static IP: (select) address/netmask:10.1.1.1/24
Interface Mode:nat
Network > Interfaces > Ethernet0/1àedit
Zone Name:untrust
Static Ip:ip address/netmask:1.1.1.1/24
Interface Mode:route