How to set up a VNP IPSec tunnel on Windows?

F

Fiasco2014-04-29 09:23:25

System administration

Fiasco, 2014-04-29 09:23:25

Good afternoon, tell me, please, how to set up an IPSec tunnel between two networks?
network1:

192.168.0.0
255.255.255.0
gateway - 213.150.*.*

network2:

10.0.120.0
255.255.254.0
gateway - 213.87.*.*

network2 is configured with the following settings:

Phase1:
pre-shared-key ****
encryption algorithm: 3DES
hash algorithm: SHA1
authentication method: Pre-Shared Key
Diffie-Hellman group: #2 (1024 bit)
lifetime: 86400 seconds, no volume limit
Phase 2:
Transform set esp3dtu: { esp-3des esp-sha-hmac }
will negotiate = { Tunnel, },
Security association lifetime: 4608000 kilobytes/3600 seconds

How to set up network1 using regular windows xp tools or using utilities, such as Shrew Soft VPN Client?
I tried to use this manual: www.ixbt.com/comm/wrls-ovislink-wmu-9000vpn_2.shtml the tunnel is seen on both sides, but when you try to ping the address on network2, there is an endless negotiation of security policies. It is possible to change network settings2. In the network2 logs, the first phase does not pass.

Reply

Answer the question

In order to leave comments, you need to log in

1 answer(s)

S

shaazz, 2014-04-29
@shaazz

In the manual that you provide, a computer with a white address of 10.0.0.75 is connected to a router with a white address of 10.0.0.78. And in your case, network1 with a gateway and network2 with a gateway, so you need to connect two routers in IPSec - a tunnel. Or another option - L2TP over IPSec - use the tunnel (the white address should be only at the server, and the client behind NAT). Here is an example of connecting a client with a gray address in a 3G network.