VPN IPSec Example Configurations
|
VPN IPSec Scenarios
On this site you will find possible VPN IPSec scenarios and appropriate configurations for testing.
|
Overview all Possible VPN IPSec Connections.
This PDF document shows all possible VPN IPSec connections and the necessary settings at a glance.
It also contains a description of the adjustable values.
|
 
|
Overview VPN IPSec Connections
|
Site-to-Site Connection with Static IP Addresses
In this scenario both firewalls have a static IP address. For authentication a preshared key (PSK) is used.
|
|
|
Configuration of the left firewall
|
|
|
Configuration of the right firewall
|
Site-to-Site Connection with Dynamic IP Addresses
In this scenario both firewalls have dynamic IP addresses and both are using the DynDNS service. For authentication a preshared key (PSK) is used.
|
|
|
Configuration of the left firewall
|
|
|
Configuration of the right firewall
|
Site-to-Site Connection with One Static IP Address and One Dynamic IP Address
In this scenario one firewall has a static IP address, the second firewall has a dynamic IP address and is using the DynDNS service. For authentication a preshared key (PSK) is used.
The firewall with the static IP is the left one.
The firewall with the dynamic IP ist the right one.
|
|
|
Configuration of the left firewall
|
|
|
Configuration of the right firewall
|
Roadwarrior Connection with Preshared Key (PKS)
The roadwarrior connection uses native IPSec and a preshared key (PSK) for authentication.
|
|
|
Configuration of the firewall
|
Roadwarrior Connection with Certificate
The roadwarrior connection uses native IPSec and a certificate for authentication.
|
|
|
Configuration of the firewall
|
Roadwarrior L2TP Connection with Certificate for Windows XP or Vista (without NAT).
The roadwarrior connection uses the L2TP protocol and a certificate for authentication.
The client is not positioned behind a router which uses NAT.
|
|
|
Configuration of the firewall
|
Roadwarrior L2TP Connection with Certificate for Windows XP or Vista (with NAT).
The roadwarrior connection uses the L2TP protocol and a certificate for authentication.
The client is positioned behind a router which uses NAT.
|
|
|
Configuration of the firewall
|
Home 
