A more secure LAN-to-LAN VPN solution
In order to establish a more secure LAN-to-LAN VPN connection, traffic policies should be
created instead of allowing all traffic between the two private Networks. The following steps
show how to enable some common services allowed through the VPN tunnel. In this example
we have a mail server, ftp server and a web server (intranet) in the main office that we want to
access from the branch office.
Settings for Branch office
1.
Setup policies for the new tunnel,
Firewall->Policy:
Click
Global policy parameters
Disable
Allow all VPN traffic: internal->VPN, VPN->internal and VPN->VPN
Click
Apply
2.
Now is it possible to create policies for the VPN interfaces. Select from
LAN
to
toMainOffice
and click
Show
.
3.
Click
Add new
to create the first rule
Содержание DFL-700 - Security Appliance
Страница 1: ...D Link DFL 700 Network Security Firewall Manual Building Networks for People 04 18 2005 TM ...
Страница 102: ...102 5 Select Connect to the network at my workplace and click Next ...
Страница 103: ...6 Select Virtual Private Network connection and click Next ...
Страница 104: ...104 7 Name the connection MainOffice and click Next ...
Страница 105: ...8 Select Do not dial the initial connection and click Next ...
Страница 106: ...106 9 Type the IP address to the server 194 0 2 20 and click Next 10 Click Finish ...