D-link netdefend vpn client (ds-601/605) a quick installation guide to setting up the d-link netdefend vpn client in a vpnc scenario these scenarios were developed by the vpn consortium scenario 1. Client-to-gateway using pre-shared secrets typical client-to-gateway vpn using a preshared secret for ...
Version 0.90 page 2 of 15 06.Sep.04 disclaimer considerable care has been taken in the preparation of this quick guide, errors in content, typographical or otherwise may occur. If you have any comments or recommendations concerning the accuracy, then please contact ncp as desired. Ncp makes no repre...
Version 0.90 page 4 of 15 06.Sep.04 figure 1.2.2: configuration assistant: connection name several profiles can be created and each given different name. In this example, this profile is created and given the name gateway b with pre-shared key. Click next >. Figure 1.2.3: configuration assistant: li...
Version 0.90 page 5 of 15 06.Sep.04 figure 1.2.4: configuration assistant: vpn gateway parameters enter in the gateway's ip address or dns name. Click next >. Figure 1.2.5: configuration assistant: pre-shared keys in this example, a pre-shared key or shared secret is used, identical passwords on the...
Version 0.90 page 6 of 15 06.Sep.04 1.3 checking/modifying the configuration figure 1.3.1: configuration -> profile settings open the profile settings to modify the parameters to define the specific ike and ipsec proposals as specified in section 1.1. Figure 1.3.2: profile settings either double cli...
Version 0.90 page 7 of 15 06.Sep.04 figure 1.3.3: profile settings: general review the parameters and ensure they are correct. Select ipsec general settings to continue… figure 1.3.4: profile settings: ipsec general settings: policy lifetimes when automatic mode is selected for both the ike (phase 1...
Version 0.90 page 8 of 15 06.Sep.04 figure 1.3.5: policy lifetimes the duration for the ike policy (sa lifetime) has been set to 8 hours (28800 seconds), and the ipsec policy (sa) lifetime is limited to 1 hour (3600 seconds). Click ok to return to define the proposals… figure 1.3.6: profile settings...
Version 0.90 page 9 of 15 06.Sep.04 figure 1.3.7: proposal definitions: ike policy first select ike policy and click on new entry to define a new ike policy (phase 1 parameters) to be used. Figure 1.3.8: defining an ike policy simply select the parameters for this proposal. Several proposals may be ...
Version 0.90 page 10 of 15 06.Sep.04 figure 1.3.9: proposal definitions: ipsec policy in the same way, select ipsec policy and click on new entry to define the ipsec proposal (phase 2 parameters). Figure 1.3.10: defining an ipsec policy simply select the parameters for this policy: esp tunnel mode, ...
Version 0.90 page 12 of 15 06.Sep.04 figure 1.3.13: profile settings: identities in this scenario, the gateway will not know what the ip address is going to be, so the value is left blank. Other ike-id types can be used, but are beyond the scope of this document; please refer to the manual for more ...
Version 0.90 page 13 of 15 06.Sep.04 figure 1.3.15: profile settings: remote networks enter in the network address(es) (depending on the subnet masks defined, these can be individual hosts or network segments) that are to be reached. This is used in the phase 2 negotiation and often the cause for co...
Version 0.90 page 14 of 15 06.Sep.04 figure 1.3.17: profile settings select ok to return to the monitor (the graphical user interface of the vpn client).
Version 0.90 page 15 of 15 06.Sep.04 1.4 establishing the connection figure 1.4.1: d-link vpn client monitor seeing as the connection is set to be established manually, click on connect to create the tunnel. Then open a dos box, and ping the internal network interface of the vpn gateway to confirm t...
