Virtual Private Networks (VPN) IPsec
Digi TransPort WR Routers User Guide
196
3. Enter the local and remote IDs.
digi.router> ipsec 1 local-id LR54-LA
digi.router> ipsec 1 remote-id LR54-NY
4. Enter the local and remote IP subnets.
digi.router> ipsec 1 local-subnet 192.168.1.0/24
digi.router> ipsec 1 remote-subnet 10.1.2.0/24
5. Enter the pre-shared key.
digi.router> ipsec 1 psk “secret-psk”
6. Enter the IPsec authentication, encryption, and Diffie-Hellman settings.
digi.router> ipsec 1 esp-authentication sha256
digi.router> ipsec 1 esp-encryption aes256
digi.router> ipsec 1 esp-diffie-hellman none
7. Enter the IKE authentication, encryption, and Diffie-Hellman settings.
digi.router> ipsec 1 ike-authentication sha1,sha256
digi.router> ipsec 1 ike-encryption aes128,aes192,aes256
digi.router> ipsec 1 ike-diffie-hellman group14,group15
8. Save the configuration.
digi.router> save config
Note If XAuth will be used for authentication, see IPsec tunnel with XAuth authentication
configuration for instructions.
Example: IPsec tunnel between a TransPort LR54 and TransPort
WR44
The following figure shows a sample IPsec configuration between a TransPort LR54 and a TransPort
WR44.
Here are the configuration settings for both devices.
TransPort LR54 configuration
digi.router> lan 1
To Next Page
Loading...
