How to set up IPsec VPN and backup IPsec VPN on HiPER 518

Users' Requirements
This article illustrates a scenario where two sites with HiPER Router devices are connected to each other over a direct connection.  U2000 as the server and HiPER 518 as the client. A site to site VPN connection is defined concurrently between the two sites. The primary connection with U2000 is the WAN1 of HiPER 518 and when it fails, traffic would automatically be routed through WAN2 of HiPER 518.
 
 
 
 
U2000( head office)
HiPER 518 (the branch)
WAN1
192.168.0.27
192.168.0.36
WAN2
 
2.2.2.2
LAN
192.168.16.1/24
1.1.1.1/24
 
Note: the default IP address of HiPER 518’s LAN interface is 192.168.1.1/24, can be changed.
 
This document applies to the firmware  nv518v1.1.1-130618
 
Procedure:
Step 1¡¢Open a Web browser, enter the Device’s LAN IP address in the address bar, then login to the WEB UI of the HiPER 518.
Step 2¡¢Go to VPN > IPSec > IPSec List page to configure IPSec VPN tunnel settings . The detailed settings are shown as follows. 
 

 
Step 3¡¢Basic Parameter Settings – HiPER 518
 

 
NOTE:
ID Value: It specifies the identity of the remote IPSec device. The ID Value(Local) in HiPER 518 must be same as the ID Value(Remote) in U2000.
 
Step 4¡¢Security Parameter Settings – HiPER 518,same as U2000
 
 
After you have finished configuring an IPSec entry, you can view its configuration and status information in the IPSec List. The parameter definitions are as follows:
 
 
Step 5¡¢Configure Internet Connection Probe
Go to Network > Load Balancing > Load Balancing List page,
 
 
Click WAN1 to configure
 
 
Detection Interval: It indicates the time interval at which the Device periodically sends probe packets, one packet at a time. The default value is 1000 milliseconds. Especially, if you don’t want to monitor an Internet connection, please set it to 0. Retry Times: It indicates the number of retries per probe period. The default value is 3. Detection Target IP: It indicates the IP address of a target device. The Device will monitor an Internet connection by sending the probe packets to the specified target IP address.
So, if the network by WAN1 is faulty ,the IPSEC VPN will connect with server by WAN2 automatically.