This document applies to the firmware version ReOS V10.
This document provides information about how to set up an IPSec VPN tunnel between a HiPER 811 and a HiPER 4210G.
User Requirements
A company’s head office uses a HiPER 4210G to connect to the Internet, and its branch office uses a HiPER 811 to connect to the Internet. Now the company wants to securely connect the remote branch office to the head office through an IPSec VPN tunnel over the Internet. The IP addresses are as follows:
HiPER 4210G Located at the Head Office:
WAN Interface IP Address: 200.100.100.2/28
LAN Interface IP Address: 192.168.16.1/24
HiPER 811 Located at the Branch Office:
WAN Interface IP Address: 218.123.45.2/28
LAN Interface IP Address: 192.168.15.1/24
Detailed Configuration
1.Configuring the HiPER 811
Login to the Web UI of the HiPER 811, and go to the VPN > IPSec > IPSec Settings page to configure IPSec VPN tunnel settings. The detailed settings are shown in Figure 1 and 2.
Figure 1 Basic Parameter Settings – HiPER 811
Figure 2 Advanced Parameter Settings – HiPER 811
1. Configuring the HiPER 4210G
Login to the Web UI of the HiPER 4210G, and go to the VPN > IPSec > IPSec Settings page to configure IPSec VPN tunnel settings. The detailed settings are shown in Figure 3 and 4.
Figure 3 Basic Parameter Settings – HiPER 4210G
Figure 4 Advanced Parameter Settings – HiPER 4210G
Note
If both IPSec peers are UTT routers, the advanced options can be left at their default values unless special requirements are needed. If either of them is from another vendor, please pay attention that the values that you specify for one peer must be identical to those for the other peer. As the UTT routers don’t support PFS at present, you cannot enable PFS even though another vendor’s VPN gateway supports it.
Facebook
Twitter
LinkedIn
Google+
Youtube