DLINK-VPN setupDFL-xxx, - DS-60x - VPN - Setup - Guide

DFL-xxx, DS-60x VPN Setup Guide
D-Link VPN Application

Quick Installation Guide
Page 1 of 47
Contents
1. Remote Access _________________________________________________________ 3
1-1 Objective: ___________________________________________________________ 3
1-2 Environment: ________________________________________________________ 3
1-3 Setup_______________________________________________________________ 3
1-3-1 PPTP Server _____________________________________________________ 3
DFL-1500 _________________________________________________________ 4
DFL-1100/700/200 __________________________________________________ 4
DFL-600 __________________________________________________________ 5
Configuring PPTP Client (Microsoft XP PRO’s VPN adapter) _______________ 6
1-3-2 L2TP without IPSec_______________________________________________ 10
1-3-3 IPSec __________________________________________________________ 10
DFL-1500/900_____________________________________________________ 11
DFL-1100/700/200 _________________________________________________ 15
DFL-600 _________________________________________________________ 18
Configuring IPSec connection (D-Link DS-601) _________________________ 20
2. LAN to LAN ___________________________________________________________ 27
2-1 Objective: __________________________________________________________ 27
2-2 Environment: _______________________________________________________ 27
2-3 Setups: ____________________________________________________________ 27

2-3-1 PPTP Server & PPTP Client ________________________________________ 27
DFL-1500 ________________________________________________________ 28
DFL-1100/700/200 _________________________________________________ 29
2-3-2 L2TP Server & L2TP Client_________________________________________ 30
2-3-3 IPSec __________________________________________________________ 30
DFL-1500 ________________________________________________________ 31
DFL-1100/700/200 _________________________________________________ 38
DFL-600 _________________________________________________________ 44
Page 2 of 47
1. Remote Access
1-1 Objective:
Someone is out off office and need to connect back to company by using VPN function
(PPTP/L2TP/IPSec).
1-2 Environment:
1-3 Setup
1-3-1 PPTP Server

Remote PC settings Firewall settings
01-Remote IP address: 61.219.68.13 01-Enable PPTP Server
02-VPN type: PPTP 02-Local IP address: 192.168.1.254
03-Username: firewall 03-IP pool: 192.168.1.100~105
04-Password: firewall 04-Username: firewall
05-Password: firewall
Page 3 of 47
Device setting page
DFL-1500
01- Enable PPTP Server (Advanced settings -> VPN settings -> PPTP)
DFL-1100/700/200
01- Add User (Firewall -> Users)
02- Enable PPTP Server (Firewall -> VPN)
Page 4 of 47
DFL-600
01- Add User (Advanced -> VPN-PPTP -> PPTP Account)
02- Enable PPTP Server (Advanced -> VPN-PPTP -> PPTP settings)
Page 5 of 47
Configuring PPTP Client (Microsoft XP PRO’s VPN adapter)

Setup1
Select “Create a new connection” to create a VPN-PPTP dial out service.
Setup2
Click Next to the next step.
Page 6 of 47
Setup3
Check Connect to the network at my workplace radio button. Click Next to the next step.
Steup4
Check Virtual Private Network connection radio button. Click Next to the next step.
Page 7 of 47
Step5
Give a name to the PPTP connection. Click Next to the next step.
Step6
Input VPN-PPTP Server IP address: 61.219.68.13. Click Next to the next step.
Page 8 of 47
Step7
Click Finish completing VPN-PPTP setting.
Step8
Input your user name and password. Click Connect to establish a connection.
Page 9 of 47
1-3-2 L2TP without IPSec

For example: DFL-1500 with Microsoft’s VPN adapter (Windows 2K)
1-3-3 IPSec
01- Profile name: test 01- Rule Name: IPSec
02- Communication media: LAN over IP 02- Local IP address: 192.168.1.0/24
03- Gateway: 61.219.68.13 03- Remote IP address: 61.219.68.14
04- IKE policy: DES+MD5 04- Negotiation mode: Main
05- IKE key group: DH2 05- Encapsulation mode: Tunnel
06- IPSec policy: DES+MD5 (ESP) 06- Peers’s IP address: 61.219.68.14
07- IPSec key group: DH1 07- PSK: 1234567890
08- Exch_mode: Main 08- IKE policy: DES+MD5
09- Local identity: IP address 09- IKE key group: DH2
10- ID: 61.219.68.14 10- IPSec policy: DES+MD5 (ESP)
11- PSK: 1234567890 11- IPSec key group: DH1
12- Remote Networks: 192.168.1.0/24
13- Disable firewall settings
Page 10 of 47
Device settings
DFL-1500/900
01- Add books (Basic -> Books)
WAN1:
LAN1:
Page 11 of 47
02- Edit Firewall rules (Advanced Settings -> Firewall -> Edit Rules)
03- Enable IPSec and edit IPSec rule (Advanced Settings -> VPN Settings)
Page 12 of 47
Page 13 of 47
Page 14 of 47
DFL-1100/700/200
01- Enable allow all VPN traffic (Firewall -> Policy)
02- Enable IPSec and edit IPSec rule (Firewall -> VPN -> IPSec Tunnels)
Page 15 of 47
Page 16 of 47
Page 17 of 47
DFL-600
01- Enable allow all VPN traffic (Advanced -> Policy -> Global Policy Status)
Page 18 of 47
Page 19 of 47
Configuring IPSec connection (D-Link DS-601)

Setup1
Configuration->Profile settings->New Entry
Input your profile name and click Next button
Setup2
Select Communication media as LAN over IP and click Next Button
Page 20 of 47
Setup3
Input VPN gateway (61.219.68.13) and click Next button
Setup4
Input 1234567890 in the Shared secret and retype it in the Confirm secret.
Input your local IP address in the Local identity, and click Finish button.
Page 21 of 47
Setup5
After finishing the previous wizard, you can find out that add a new profile here.
Setup6
Configuration->Profile settings->test->IPSec General Settings
Click Policy editor to edit IPSec and IKE policy
Page 22 of 47
Setup7
Click IKE Policy->New Entry, enter DES+MD5+DH2 as the IKE policy name.
Select Encryption as DES, Hash as MD5, DH group as DH2 and click OK button.
Page 23 of 47
Setup8
Click IPSec Policy->New Entry, enter DES+MD5 as the IPSec policy name.
Select Transform as DES, Authentication as MD5 and click OK button.
Setup9
Configuration->Profile settings->test->IPSec General Settings
Select IKE policy as DES+MD5+DH2, IPSec policy as DES+MD5, Exch. mode as Main
Mode, PFS group as DH-1
Page 24 of 47
Setup10
Setup Remote Networks, enter Network address as 192.168.1.0 and Subnet masks as
255.255.255.0
Setup11
Setup Firewall settings, select Enable Stateful Inspection as off and click OK button.
Page 25 of 47
Setup12
Click Connect button to establish IPSec tunnel
Page 26 of 47
2. LAN to LAN
2-1 Objective:
When a branch office wants to connect with another branch office through the Internet.
2-2 Environment:
2-3 Setups:
2-3-1 PPTP Server & PPTP Client

Remote_Firewall settings Local_Firewall settings
01- Enable PPTP Client 01- Enable PPTP Server
02- Server IP address: 61.219.68.13 02- Local IP address: 10.10.99.254
03- Username: firewall 03- IP pool: 10.10.99.200-205
04- Password: firewall 04- Username: firewall
05- Password: firewall
Page 27 of 47
DFL-1500
01- Enable PPTP Server (Advanced settings -> VPN settings -> PPTP)
02- Enable PPTP Client (Advanced settings -> VPN settings -> PPTP -> Client)
03- Add a static routing table (Advanced settings -> Routing -> Static Route)
Page 28 of 47
DFL-1100/700/200
01- Add User (Firewall -> Users)
02- Enable PPTP Server (Firewall -> VPN)
03- Enable PPTP Client (Firewall -> VPN)
Page 29 of 47
2-3-2 L2TP Server & L2TP Client

2-3-3 IPSec
01- Enable IPSec 01- Enable IPSec
02- Local IP address: 192.168.1.0/24 02- Local IP address: 10.10.99.0/24
03- Remote IP address: 10.10.99.0/24 03- Remote IP address: 192.168.1.0/24
04- Negotiation Mode: Main mode 04- Negotiation Mode: Main mode
05- Encapsulation Mode: Tunnel mode 05- Encapsulation Mode: Tunnel mode
06- Peer’s IP address: 61.219.68.13 06- Peer’s IP address: 61.219.68.14
07- PSK: 1234567890 07- PSK: 1234567890
08- IKE policy: DES+MD5 08- IKE policy: DES+MD5
09- IKE key group: DH2 09- IKE key group: DH2
10- IPSec policy: DES+MD5 (ESP) 10- IPSec policy: DES+MD5 (ESP)
11- IPSec key group: DH1 11- IPSec key group: DH1
Page 30 of 47
DFL-1500
Remote_Firewall:
Page 31 of 47
Page 32 of 47
Page 33 of 47
Local_Firewall:
Page 34 of 47
Page 35 of 47
Page 36 of 47
Page 37 of 47
DFL-1100/700/200
Remote_Firewall:
01- Enable allow all VPN traffic (Firewall -> Policy)
Page 38 of 47
Page 39 of 47
Page 40 of 47
Local_Firewall:
01-Enable allow all VPN traffic (Firewall -> Policy)
Page 41 of 47
Page 42 of 47
Page 43 of 47
DFL-600
Remote_Firewall:
Page 44 of 47
02- Enable IPSec and edit IPSec rule (Advanced -> VPN-IPSec -> Tunnel Settings)
Page 45 of 47
Local_Firewall:
02- Enable IPSec and edit IPSec rule (Advanced -> VPN-IPSec -> Tunnel Settings)
Page 46 of 47
Page 47 of 47

DLINK-VPN setupDFL-xxx, - DS-60x - VPN - Setup - Guide

Uploaded by

Copyright:

Available Formats

DLINK-VPN setupDFL-xxx, - DS-60x - VPN - Setup - Guide

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

DLINK-VPN setupDFL-xxx, - DS-60x - VPN - Setup - Guide

Uploaded by

Copyright:

Available Formats

DFL-xxx, DS-60x VPN Setup Guide

D-Link VPN Application

1-1 Objective: ___________________________________________________________ 3

1-2 Environment: ________________________________________________________ 3

2. LAN to LAN ___________________________________________________________ 27

2-1 Objective: __________________________________________________________ 27

2-2 Environment: _______________________________________________________ 27

2-3 Setups: ____________________________________________________________ 27

1-3-1 PPTP Server

Device setting page

02- Enable PPTP Server (Firewall -> VPN)

Configuring PPTP Client (Microsoft XP PRO’s VPN adapter)

1-3-2 L2TP without IPSec

For example: DFL-1500 with Microsoft’s VPN adapter (Windows 2K)

Configuring IPSec connection (D-Link DS-601)

2-3-1 PPTP Server & PPTP Client

02- Enable PPTP Server (Firewall -> VPN)

03- Enable PPTP Client (Firewall -> VPN)

2-3-2 L2TP Server & L2TP Client

You might also like