Black Box LES110BA, LES1116A, LES1132A, LES114BA, LES1208A-R2, LES1216A-R2, LES1232A, LES1248A-R2, LES1308A, LES1316A, LES1332A, LES1348A, LES1408A, LES1416A, LES1432A, LES144BA, Value-Line and Advanced Console Servers 4.9.1 Enable the VPN gateway

console servers provide a simple GUI int erface for basic set up a s described below. However for more

detailed information on configuring Openswan IPsec at the command line and in terconnecting with other

IPsec VPN gateways and road warrior IP sec sof tware refer http://wiki.openswan.org

 Select IPsec VPN on the Serial & Networks menu

 Click Add and complete the Add IPsec Tunnel screen

 Enter any descript i ve name you wish to identify the IPsec Tunn el you are adding such as

WestStOutlet-VPN

 Select the Authenticatio n Method to be used, either RSA digital signatures or a Shared secret

(PSK)

o If you select RSA you will as ked t o click here t o generate keys. T his will generate an RSA

public key for the console server (the Left Public Key). You will need to find out the key

to be used on the remote gateway, then cut and paste it into t he Right Public Key

o If you select Shared secret you will need to enter a Pre-shared secret (PSK). The PSK

must match the PSK configured at the other en d of t he tunnel

 In Authentication Protocol select the authenti cati on protocol to be used. E i ther authenticate as

part of ESP (Encapsulat i ng Security Pay l oad) encryption or separately using the AH

(Authenticatio n Header) protocol.

 Enter a Left ID and Right ID. This is the ident ifier that the Local ho st/gateway and remot e

host/gateway use f or I Psec negotiation a nd authenticati on. Each ID must include an ‘@’ and can

include a fully qualif ied domain name preceded by ‘@’ ( e.g. left@example.com )

 Enter the public I P or DNS address of this console server VPN ga teway (or ent er the address of

the device connecting the console server to t he I nternet) as the Left Address. Y ou can leave this

blank to use the interf ace of the default rout e

 In Right Address enter the public IP or DNS address of the remote end of the tunnel (only if the

remote end has a static or dyndns addre ss ). Otherwise leav e this blank

_____________________________________________________________________

724-746-5500 | blackbox.com Page 70