RuggedRouter User Guide
Virtual Private Networking To A DMZ.................................................................................114
Firewall Main Menu................................................................................................................ ......114
Network Zones...........................................................................................................................116
Network Interfaces.....................................................................................................................117
Network Zone Hosts.................................................................................................................. 119
Default Policies..........................................................................................................................119
Masquerading.............................................................................................................................120
Firewall Rules............................................................................................................................121
Static NAT................................................................................................................................. 122
Actions When Stopped........................................................................................................ ......123
Chapter 12 – Configuring An IPsec VPN .........................................................................................125
Introduction....................................................................................................................................125
VPN Fundamentals ...................................................................................................................125
IPsec Modes...........................................................................................................................125
Policy Vs Route Based VPNs................................................................................................126
Supported Encryption Protocols ........................................................................................... 126
Public Key And Pre-shared Keys................................................................................... .......127
X509 Certificates................................................................................................................... 127
NAT Traversal....................................................................................................................... 127
Other Configuration Supporting IPSec..................................................................................128
The Openswan Configuration Process...................................................................................128
IPsec and Router Interfaces....................................................................................................128
VPN Main Menu Before Key Generation.............................................................................. .......128
VPN Main Menu ..........................................................................................................................129
Server Configuration .................................................................................................................130
Public Key .................................................................................................................................131
Preshared Keys ..........................................................................................................................131
List Certificates..........................................................................................................................132
VPN Connections ......................................................................................................................132
IPsec VPN Connection Details..............................................................................................132
Left/Right System's Settings..................................................................................................134
Export Configuration............................................................................................................. 134
Showing IPsec Status ................................................................................................................135
IPSec X.509 Roaming Client Example......................................................................................136
Select A Certificate Authority....................................................................................... ........136
Generate X.509 Certificates .................................................................................................137
VPN Networking Parameters.................................................................................................137
Client Configuration........................................................................................................... ...137
Router IPSec Configuration...................................................................................................137
Firewall IPSec Configuration......................................................................................... .......138
Ethernet Port Configuration...................................................................................................139
Chapter 13 �� Configuring Dynamic Routing ....................................................................................141
Introduction....................................................................................................................................141
Quagga, RIP and OSPF..............................................................................................................141
RIP Fundamentals......................................................................................................................141
OSPF Fundamentals......................................................................................................... .........142
Link State Advertisements.....................................................................................................142
Key OSPF And RIP Parameters.......................................................................................... ......143
Network Areas....................................................................................................................... 143
10 RuggedCom