Linksys AG241 How to Establish a Secure IPSec Tunnel

54

Appendix B: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway

How to Establish a Secure IPSec Tunnel

ADSL2 Gateway with 4-Port Switch

How to Establish a Secure IPSec Tunnel

Step 1: Create an IPSec Policy

1. Click the Start button, select Run, and type secpol.msc in the Open field. The Local Security Setting screen

will appear as shown in Figure C-1.

2. Right-click IP Security Policies on Local Computer (Win XP) or IP Security Policies on Local Machine

(Win 2000), and click Create IP Security Policy.

3. Click the Next button, and then enter a name for your policy (for example, to_Router). Then, click Next.

4. Deselect the Activate the default response rule check box, and then click the Next button.

5. Click the Finish button, making sure the Edit check box is checked.

Step 2: Build Filter Lists

Filter List 1: win->Router

1. In the new policy’s properties screen, verify that the Rules tab is selected, as shown in Figure C-2. Deselect

the Use Add Wizard check box, and click the Add button to create a new rule.

2. Make sure the IP Filter List tab is selected, and click the Add button. (See Figure C-3.)The IP Filter List

screen should appear, as shown in Figure C-4. Enter an appropriate name, such as win->Router, for the filter

list, and de-select the Use Add Wizard check box. Then, click the Add button.

NOTE: The references in this section to “win” are

references to Windows 2000 and XP. Substitute

the references to “Router” with “Gateway”. Also,

the text on your screen may differ from the text in

your instructions for “OK or Close”; click the

appropriate button on your screen.

Figure B-1: Local Security Screen

Figure B-2: Rules Tab

Figure B-3: IP Filter List Tab

Contents

Main Copyright and Trademarks How to Use this Guide Table of Contents Chapter 1: Introduction 1 Chapter 2: Planning Your Network 4 Chapter 3: Getting to Know the ADSL2 Gateway with 4-Port Switch 8 Chapter 4: Connecting the ADSL2 Gateway with 4-Port Switch 10 List of Figures Page Page Chapter 1: Introduction Welcome Whats in this Guide? Page Chapter 2: Planning Your Network The Gateways Functions IP Addresses Whats an IP Address? Static IP Addresses What is a VPN? Computer (using VPN client software that supports IPSec) to VPN Gateway VPN Gateway to VPN Gateway Why do I need a VPN? Page Chapter 3: Getting to Know the ADSL2 Gateway with 4- Port Switch The Back Panel The Front Panel Chapter 4: Connecting the ADSL2 Gateway with 4-Port Switch Overview NOTE: Connection to a Computer Page Chapter 5: Configuring the Gateway Overview Setup Security Access Restrictions Applications & Gaming Administration Status How to Access the Web-based Utility The Setup Tab The Basic Setup Tab Internet Setup RFC 1483 Bridged Dynamic IP Static IP IPoA RFC 2516 PPPoE RFC 2364 PPPoA Bridged Mode Only Optional Settings (Required by some ISPs) Network Setup The DDNS Tab DDNS DynDNS.org TZO.com Advanced Routing Tab Advanced Routing The Security Tab Firewall VPN Page Advanced VPN Tunnel Setup Page The Access Restrictions Tab Internet Access Page The Applications and Gaming Tab Single Port Forwarding Port Range Forwarding Port Triggering DMZ 31 QOS Figure 5-28: QOS Application-based QoS Advanced QoS The Administration Tab Management Gateway Access SNMP UPnP Reporting Email Alerts Diagnostics Ping Test Backup&Restore Factory Defaults Firmware Upgrade Upgrade from LAN Reboot The Status Tab Gateway Gateway Information Internet Connections Local Network DSL Connection Appendix A: Troubleshooting Common Problems and Solutions Page Page Page Page Page Page Page Frequently Asked Questions Page Page Page Appendix B: Configuring IPSec between a Windows 2000 or XP Computer and the Gateway Introduction Environment How to Establish a Secure IPSec Tunnel Step 1: Create an IPSec Policy Step 2: Build Filter Lists Filter List 1: win->Router Filter List 2: Router ->win Page Step 3: Configure Individual Tunnel Rules Tunnel 1: win->Router Page Tunnel 2: Router->win Page Page Step 4: Assign New IPSec Policy Step 5: Create a Tunnel Through the Web-Based Utility Appendix C: Finding the MAC Address and IP Address for Your Ethernet Adapter Windows 98 or Me Instructions Windows 2000 or XP Instructions Appendix D: Upgrading Firmware Upgrade from LAN Appendix E: Glossary Page Page Page Page Page Appendix F: Specifications Page Appendix G: Regulatory Information Appendix H: Warranty Information Appendix I: Contact Information In Europe E-mail Address Outside of Europe E-mail Address