Table of ContentsPreviousNextIndexSearch Knowledge Base

Complete PDF manual
PDF of This Chapter

Step 1: Configuring the Client-to-Gateway VPN Tunnel on the DG834
Note: This section uses the VPN Wizard to set up the VPN tunnel using the VPNC default parameters listed in Table 6-2.. If you have special requirements not covered by these VPNC-recommended parameters, refer to How to Set Up VPN Tunnels in Special Circumstances to set up the VPN tunnel.

The worksheet below identifies the parameters used in the following procedure. A blank worksheet is at Planning a VPN.

Table 6-1. VPN Tunnel Configuration Worksheet
   
 
Connection Name:
RoadWarrior
 
Pre-Shared Key:
12345678
 
Secure Association -- Main Mode or Manual Keys:
Main
 
Perfect Forward Secrecy -- Enabled or Disabled:
Disabled
 
NETBIOS -- Enabled or Disabled:
Enabled
 
Encryption Protocol -- DES or 3DES:
3DES
 
Authentication Protocol -- MD5 or SHA-1:
SHA-1
 
Diffie-Hellman (DH) Group -- Group 1 or Group 2:
Group 2
 
Key Life in seconds:
28800 (8 hours)
 
IKE Life Time in seconds:
3600 (1 hour)
           
 

VPN Endpoint

Local IPSec ID

LAN IP Address

Subnet Mask
FQDN or Gateway IP
(WAN IP Address)
 
Client
toDG834
-
-
Dynamic
 
DG834
toClient
192.168.3.1
255.255.255.0
22.23.24.25
       

Follow this procedure to configure a client-to-gateway VPN tunnel using the VPN Wizard.

  1. Log in to the DG834 at its LAN address of http://192.168.0.1 with its default user name of admin and password of password. Click the VPN Wizard link in the main menu to display this screen. Click Next to proceed.

    Figure 6-4

  2. Fill in the Connection Name and the pre-shared key, select the type of target end point, and click Next to proceed.

    Note: The Connection Name is arbitrary and not relevant to how the configuration functions.

    Figure 6-5

    3. The Summary screen below displays.

    Figure 6-6

    To view the VPNC recommended authentication and encryption settings used by the VPN Wizard, click the "here" link (see Figure 6-6). Click Back to return to the Summary screen.

    Figure 6-7

  3. Click Done on the Summary screen (see Figure 6-6) to complete the configuration procedure. The VPN Policies menu below displays showing that the new tunnel is enabled.

    Figure 6-8

To view or modify the tunnel settings, select the radio button next to the tunnel entry and click Edit.
Note: Refer to Using Auto Policy to Configure VPN Tunnels to enable the IKE keep- alive capability on an existing VPN tunnel.

NETGEAR, Inc.
 http://www.netgear.com
Table of ContentsPreviousNextIndexSearch Knowledge Base 202-10133-01, November 2005