Set Up a Virtual Private Network (VPN)
104
o
Request Certificate
o
Send Certificate
o
Unique SAs
o
IKE Fragmentation
l
Leave NAT-T set to
Disable
and the Action after connection timeout set to
Give up
.
16. Close the Edit Connection window. The settings are saved.
17. In the main screen, highlight the connection name and select
Start
.
Once the connection is established, the icon to the right of the connection name turns green. The
client computer can access the LAN-side resources of the gateway including the Web management
interface of the gateway.
Set Up a Site-to-Site VPN
This example describes how to set up a site-to-site VPN tunnel between two gateways at different
locations. The LAN subnets of these two gateways must each be in a unique range.
To do this, you must complete the following tasks:
1. Make sure that each gateway uses a different subnet range and that the ranges do not overlap.
2. Specify the VPN connection for each gateway.
3. Enable the VPN on each gateway.
Specify the Site-to-Site VPN Connection
Follow the instructions below to specify the VPN connection information.
1. On the first gateway, select
Settings
>
General
>
VPN
.
2. In the Site-to-Site VPN configuration section, click the
Edit
button next to the Pre-Shared Key
(PSK) field.
3. Type a unique pre-shared key.
Note:
The key is an alphanumeric string with a maximum length of 32 characters.
Note:
This pre-shared key is unique to the site-to-site VPN configuration. If you set up a client-to-
gateway VPN tunnel with this gateway, you must use a different pre-shared key for the site-to-site
VPN.
4. In the Site-to-Site Configuration Details section, click the
Add
button.
5. In the Site Name field, type a meaningful name that is easy to understand.
