User Guide
Table Of Contents
- 1 At a glance
- 2 Quick setup
- 3 Login
- 4 System status
- 5 Internet settings
- 6 Wireless
- 7 Address reservation
- 8 Bandwidth control
- 9 Authentication
- 9.1 Overview
- 9.2 Configure captive portal
- 9.3 Example of captive portal
- 9.4 User management
- 10 AP mangement
- 11 Filter management
- 12 More settings
- 12.1 LAN settings
- 12.2 WAN parameters
- 12.3 Configure static route
- 12.4 Port mirroring
- 12.5 Manage your router remotely using web UI
- 12.6 DDNS
- 12.7 Port forwarding
- 12.8 DMZ host
- 12.9 UPnP
- 12.10 Any IP
- 12.11 Security settings
- 12.12 VPN server
- 12.13 VPN client
- 12.14 IPSec
- 12.15 Example of configuring VPN conenctions
- 12.16 Multi-WAN policy
- 13 Maintenance
- Appendix
175
12.15.2 Example of configuring an IPSec VPN
Networking requirement
An enterprise has used the router to set up a LAN and access the internet. Branch employees need
to access the HQ's internal resources through the internet, such as internal data, OA, ERP, CRM,
project management systems.
Solutions
You can set up an IPSec VPN using the router to meet this requirement.
Network topology
Configuration procedure
Security software, such as firewall, may fail the configuration. Therefore, you are recommended
disable them.
Assume that the two routers share the following basic IPSec tunnel information:
Encapsulation Mode: Tunnel
Branch
Headquarter
Router_Branch
Router_HQ
LAN network
Enterprise internal server
Assume that:
WAN port enabled with IPSec: WAN1
WAN1 IP: 202.105.11.22
LAN network segment/subnet mask:
192.168.0.0/24
Assume that:
WAN port enabled with IPSec: WAN1
WAN1 IP: 202.105.88.77
LAN network segment/subnet mask:
192.168.1.0/24