Allied Telesis NetScreen Routers manual How to configure the Allied Telesis router, Start

Page 4

How to configure the Allied Telesis router

Before you

1.

Install and configure the NAT device.

start

2.

Access the router via its GUI.

 

3.

Customise the router and set up vlan1 as the LAN interface. The site-to-site VPN wizard

 

 

always uses vlan1 as the local LAN for the VPN connection, so you must make sure an IP

 

 

interface is configured on vlan1 before running the wizard.

 

4.

Create a security officer. If you use the Basic Setup wizard to customise the router, this

 

 

creates one security officer, with a username of “secoff”.

 

5.

Set up the WAN interface. This example uses a fixed IP address on the WAN interface—

 

 

modify it to use an appropriate interface for your network.

The router setup of steps 2-5 is described in How To Use the Allied Telesis GUI to Customise the Router and Set Up An Internet Connection, which is available from www.alliedtelesis.com/ resources/literature/howto.aspx.

In this example, the Allied Telesis router has the following settings:

 

Interface

Address

Mask

 

 

 

 

Allied Telesis router LAN

vlan1

192.168.1.1

255.255.255.0

 

 

 

 

Allied Telesis router WAN

eth0

192.168.254.1

255.255.255.252

 

 

 

 

Remote site’s WAN settings

 

200.200.200.1

 

 

 

 

 

Remote site’s LAN settings

 

192.168.2.1

255.255.255.0

 

 

 

 

The NAT device has the following settings:

 

Interface

Address

Mask

Private interface (towards the router)

eth1

192.168.254.2

255.255.255.252

 

 

 

 

Public interface (towards the Internet)

eth0

100.100.100.1

255.255.255.252

 

 

 

 

Page 4 AlliedWare™ OS How To Note: VPNs with SonicWALL routers

Page 3 Page 5
Image 4
Page 3 Page 5
Contents AlliedWareTM OS What information will you find in this document? Related How To NotesWhich products and software version does it apply to? Network RouterHow to configure the Allied Telesis router StartVPN tunnel 1. Open the Configuration Wizards Start the Site-to-Site VPN wizard Name the VPN connectionEnter the remote site’s WAN IP address Enter the remote site’s LAN IP addressCheck the settings Enter the shared secret keySpecify Peer IDs Check the settings again Finish the wizardManager How to configure the SonicWALL router Access the RouterConnect a PC to the router Set the PC’s IP addressBrowse to the router’s management GUI Log on14 AlliedWare OS How To Note VPNs with SonicWALL routers Change the administrator password Customise the router and set up the networkSet the time zone Enter the WAN settings Choose the type of WAN addressSet up the Dhcp server Enter the LAN addressClick the Close button Log in again Define the LAN subnet of the peer Open the Address Objects summaryOpen the Custom Address Objects summary Define the address object22 AlliedWare OS How To Note VPNs with SonicWALL routers Return to the Configuration Wizards Create the VPNCreate the Site-to-Site policy Select the networks for each end of the LANSpecify security settings 26 AlliedWare OS How To Note VPNs with SonicWALL routers Set the VPN IKE IDs and use Main Mode Specify the Local and Peer IKE IDsSpecify IKE Main Mode If necessary, restart the routerCheck the tunnel status How to test the tunnelPing the SonicWALL LAN How to use the CLI instead of the GUI Wizard, for Remote Peer IP
Top Page Image Contents