3 inspect vpn rules, 4 manually setting up vpn connections – Lancom Systems LCOS 3.50 User Manual

̈

Chapter 14: Virtual Private Networks—VPN

LANCOM Reference Manual LCOS 3.50

309

V

irt

ua

l Pri

vat

e Ne

two

rks—

VP

N

14.5.3

Inspect VPN rules

VPN rules represent a combination of various pieces of information and they
are not directly defined in a LANCOM device; instead, they are compiled from
a variety of sources. This is why it is not possible to inspect the VPN rules with
LANconfig or any other configuration tool.

Information about the current VPN rules in the device can be retrieved with
the Telnet console. Start a Telnet connection to the VPN gateway and enter
the command show vpn in the console:

The output informs you of the network relationships that are relevant to VPN
connections to other networks.

In this example, the local network at a branch office (network 192.168.2.0,
netmask 255.255.255.0) is connected to the network at the headquarters
(network 10.0.0.0, netmask 255.255.255.0). The public IP address of the local
gateway is 80.146.81.251, and that of the remote VPN gateway is
217.213.77.120.

Entering “any:0” displays the protocols and ports that can be used
over the connection.

Further output is displayed by the command “show vpn long”. The
information displayed here covers network relationships and also the
parameters that are relevant to security, such as IKE and IPSec
proposals.

14.5.4

Manually setting up VPN connections

Manually setting up VPN connections involves the tasks described previously: