Netgear FVS318v3 사용자 설명서
Reference Manual for the ProSafe VPN Firewall FVS318v3
6-16
Advanced Virtual Private Networking
January 2005
The IKE Phase 2 parameters used in Scenario 1 are:
•
TripleDES
•
SHA-1
•
ESP tunnel mode
•
MODP group 2 (1024 bits)
•
Perfect forward secrecy for rekeying
•
SA lifetime of 3600 seconds (one hour) with no kilobytes rekeying
•
Selectors for all IP protocols, all ports, between 10.5.6.0/24 and 172.23.9.0/24, using IPv4
subnets
subnets
FVS318v3 Scenario 1: FVS318v3 to Gateway B IKE and VPN
Policies
Policies
Note: This scenario assumes all ports are open on the FVS318v3. You can verify this by reviewing
the security settings as seen in the
the security settings as seen in the
on
.
Figure 6-6: LAN to LAN VPN access from an
FVS318v3
to an
FVS318v3
Use this scenario illustration and configuration screens as a model to build your configuration.
1. Log in to the FVS318v3 labeled Gateway A as in the illustration.
Log in at the default address of
http://192.168.0.1
with the default user name of admin and
default password of password, or using whatever password and LAN address you have
chosen.
chosen.
2. Configure the WAN (Internet) and LAN IP addresses of the FVS318v3.
a.
From the main menu Setup section, click the Basic Setup link to go back to the Basic
Settings menu.
Settings menu.
FVS318
Gateway B
Scenario 1
14.15.16.17
22.23.24.25
WAN IP
WAN IP
172.23.9.1/24
10.5.6.1/24
LAN IP
LAN IP
Gateway A
FVS318