Allied Telesis NetScreen Routers manual AlliedWareTM OS

Page 1

AlliedWareTM OS

How To Create a VPN between an Allied Telesis and a SonicWALL Router, with NAT-T

Today’s network managers often need to incorporate other vendors’ equipment into their networks, as companies change and grow. To support this challenge, Allied Telesis routers are designed to inter-operate with a wide range of equipment.

This How To Note details one of the inter-operation solutions from Allied Telesis: creating virtual private networks between Allied Telesis and SonicWALL routers. It shows you how to configure a VPN between a local Allied Telesis router and a remote SonicWALL router, step- by-step. On the Allied Telesis router, it uses the Site-To-Site VPN wizard for the VPN configuration.

The wizard runs on selected AR400 Allied Telesis routers from the router’s web-based GUI (graphical user interface). It asks you to enter a few details and from those it configures the following settings:

zencryption to protect traffic over the VPN

zISAKMP with a pre-shared key to manage the VPN

zthe firewall, to protect the LANs and to allow traffic to use the VPN

zNetwork Address Translation (NAT), so that you can access the Internet from the private LAN through a single public IP address. This Internet access does not interfere with the VPN solution

z(in this example) NAT-Traversal because one end of the VPN tunnel is behind a separate NAT device

C613-16098-00 REV E

www.alliedtelesis.com

Page 1 Page 2
Image 1
Page 1 Page 2
Contents AlliedWareTM OS What information will you find in this document? Related How To NotesWhich products and software version does it apply to? Router NetworkStart How to configure the Allied Telesis routerVPN tunnel 1. Open the Configuration Wizards Name the VPN connection Start the Site-to-Site VPN wizardEnter the remote site’s LAN IP address Enter the remote site’s WAN IP addressEnter the shared secret key Check the settingsSpecify Peer IDs Finish the wizard Check the settings againManager Access the Router How to configure the SonicWALL routerConnect a PC to the router Set the PC’s IP addressLog on Browse to the router’s management GUI14 AlliedWare OS How To Note VPNs with SonicWALL routers Change the administrator password Customise the router and set up the networkSet the time zone Choose the type of WAN address Enter the WAN settingsEnter the LAN address Set up the Dhcp serverClick the Close button Log in again Open the Address Objects summary Define the LAN subnet of the peerDefine the address object Open the Custom Address Objects summary22 AlliedWare OS How To Note VPNs with SonicWALL routers Create the VPN Return to the Configuration WizardsSelect the networks for each end of the LAN Create the Site-to-Site policySpecify security settings 26 AlliedWare OS How To Note VPNs with SonicWALL routers Specify the Local and Peer IKE IDs Set the VPN IKE IDs and use Main ModeIf necessary, restart the router Specify IKE Main ModeCheck the tunnel status How to test the tunnelPing the SonicWALL LAN How to use the CLI instead of the GUI Wizard, for Remote Peer IP
Top Page Image Contents