Linksys AG041 (EU) manual How to Establish a Secure IPSec Tunnel, Create an IPSec Policy

Page 59

ADSL Gateway with 4-Port Switch

How to Establish a Secure IPSec Tunnel

Step 1: Create an IPSec Policy

1.Click the Start button, select Run, and type secpol.msc in the Open field. The Local Security Setting screen will appear.

2.Right-click IP Security Policies on Local Computer (Win XP) or IP Security Policies on Local Machine (Win 2000), and click Create IP Security Policy.

3.Click the Next button, and then enter a name for your policy (for example, to_Router). Then, click Next.

4.Deselect the Activate the default response rule check box, and then click the Next button.

5.Click the Finish button, making sure the Edit check box is checked.

Figure B-1: Local Security Screen

NOTE: The references in this section to “win” are references to Windows 2000 and XP. Substitute the references to “Router” with “Gateway”. Also, the text on your screen may differ from the text in your instructions for “OK or Close”; click the appropriate button on your screen.

Step 2: Build Filter Lists

Filter List 1: win->Router

1.In the new policy’s properties screen, verify that the Rules tab is selected. Deselect the Use Add Wizard check box, and click the Add button to create a new rule.

2.Make sure the IP Filter List tab is selected, and click the Add button. The IP Filter List screen should appear. Enter an appropriate name, such as win->Router, for the filter list, and de-select the Use Add Wizard check box. Then, click the Add button.

Appendix B: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway

Figure B-2: Rules Tab

Figure B-3: IP Filter List Tab

52

How to Establish a Secure IPSec Tunnel

Image 59

Contents Adsl Gateway Word definition How to Use this GuideCopyright and Trademarks Table of Contents Adsl Gateway with 4-Port Switch A Network with the Gateway List of Figures23 Applications & Gaming Port Triggering Figure B-23 New Preshared Key Welcome IntroductionWhat’s in this Guide? Adsl Gateway with 4-Port Switch What’s an IP Address? Planning your NetworkGateway’s Functions IP AddressesEncryption encoding data transmitted in a network What is a VPN?Dhcp Dynamic Host Configuration Protocol Servers Dynamic IP AddressesVPN Gateway to VPN Gateway Why do I need a VPN?VPN Gateway-to-VPN Gateway Back Panel Getting to Know the Adsl GatewayDSL Front PanelOverview Connecting the Adsl GatewayConnecting to a Computer ISP a company that provides access to the InternetConnect power Security Configuring the Adsl GatewaySetup Access RestrictionsStatus How to Access the Web-based UtilityAdministration Applications & GamingInternet Setup Setup TabBasic Setup Static IP RFC 1483 Bridged Dynamic IPRFC 2516 PPPoE RFC 1483 RoutedRFC 2364 PPPoA Bridged Mode OnlyNetwork Setup Optional Settings Required by some ISPsDynDNS.org DdnsStatic Routing Advanced RoutingAdvanced Routing 12 Routing Table Firewall Security TabSoftware instructions for the computer VPN15 VPN with Manual Key Management Phase Advanced VPN Tunnel SetupConfiguring the Adsl Gateway Security Tab Internet Access Access Restrictions Tab19 List of PCs Single Port Forwarding Applications and Gaming TabPort Triggering Port Range ForwardingDMZ Management Administration TabGateway Access UPnP Smtp the standard e-mail protocol on the Internet ReportingLog Email AlertsPing Test Ping Test Parameters DiagnosticsFactory Defaults 29 Administration tab Firmware Upgrade Firmware UpgradeInternet Connections Status TabGateway Gateway InformationDSL Connection Local NetworkNeed to set a static IP address on a computer Appendix a TroubleshootingCommon Problems and Solutions Want to test my Internet connection Open a command prompt. For Windows 98 and Me Adsl Gateway with 4-Port Switch TCP UDP Can’t get the Internet game, server, or application to work VPN IpsecFirmware upgrade failed, and/or the Power LED is flashing To start over, I need to set the Gateway to factory defaultNeed to upgrade the firmware My DSL service’s PPPoE is always disconnecting Is IPSec Passthrough supported by the Gateway? Frequently Asked QuestionsPower LED flashes continuously Where is the Gateway installed on the network?Does the Gateway support ICQ send file? What is Network Address Translation and what is it used for?What is DMZ Hosting? Is the Gateway cross-platform compatible? What are the advanced features of the Gateway?What is a MAC Address? How do I reset the Gateway?Environment IntroductionFilter List 1 win-Router How to Establish a Secure IPSec TunnelCreate an IPSec Policy Build Filter ListsFigure B-4 IP Filter LIst Filter List 2 Router -winFigure B-7 IP Filter List Tunnel 1 win-Router Configure Individual Tunnel RulesFigure B-13 Authentication Methods Tunnel 2 Router-win Figure B-16 Tunnel Setting TabFigure B-19 IP Filter List Tab Figure B-22 Preshared Key Figure B-25 Connection Type Assign New IPSec PolicyFigure B-28 VPN Tab Create a Tunnel Through the Web-Based UtilityWindows 98 or Me Instructions Figure C-1 IP Configuration ScreenFigure C-3 MAC Address/Physical Address Windows 2000 or XP InstructionsAppendix D Upgrading Firmware Figure D-1 Upgrade FirmwareNetwork Neighborhood/My Network Places Appendix E Windows HelpShared Resources Appendix F Glossary Adsl Gateway with 4-Port Switch Adsl Gateway with 4-Port Switch Adsl Gateway with 4-Port Switch Standards Appendix G SpecificationsLimited Warranty Appendix H Warranty InformationFCC Statement Appendix I Regulatory InformationOutside of Europe Mail Address Appendix J Contact InformationEurope Mail Address