RuggedCom RuggedRouter RX1000 User Manual
Page 12
RuggedRouter
User Guide
Virtual Private Networking To A DMZ.................................................................................114
Firewall Main Menu......................................................................................................................114
Network Zones...........................................................................................................................116
Network Interfaces.....................................................................................................................117
Network Zone Hosts..................................................................................................................119
Default Policies..........................................................................................................................119
Masquerading.............................................................................................................................120
Firewall Rules............................................................................................................................121
Static NAT.................................................................................................................................122
Actions When Stopped..............................................................................................................123
Chapter 12 – Configuring An IPsec VPN .........................................................................................125
Introduction....................................................................................................................................125
VPN Fundamentals ...................................................................................................................125
IPsec Modes...........................................................................................................................125
Policy Vs Route Based VPNs................................................................................................126
Supported Encryption Protocols ...........................................................................................126
Public Key And Pre-shared Keys..........................................................................................127
X509 Certificates...................................................................................................................127
NAT Traversal.......................................................................................................................127
Other Configuration Supporting IPSec..................................................................................128
The Openswan Configuration Process...................................................................................128
IPsec and Router Interfaces....................................................................................................128
VPN Main Menu Before Key Generation.....................................................................................128
VPN Main Menu ..........................................................................................................................129
Server Configuration .................................................................................................................130
Public Key .................................................................................................................................131
Preshared Keys ..........................................................................................................................131
List Certificates..........................................................................................................................132
VPN Connections ......................................................................................................................132
IPsec VPN Connection Details..............................................................................................132
Left/Right System's Settings..................................................................................................134
Export Configuration.............................................................................................................134
Showing IPsec Status ................................................................................................................135
IPSec X.509 Roaming Client Example......................................................................................136
Select A Certificate Authority...............................................................................................136
Generate X.509 Certificates .................................................................................................137
VPN Networking Parameters.................................................................................................137
Client Configuration..............................................................................................................137
Router IPSec Configuration...................................................................................................137
Firewall IPSec Configuration................................................................................................138
Ethernet Port Configuration...................................................................................................139
Chapter 13 – Configuring Dynamic Routing ....................................................................................141
Introduction....................................................................................................................................141
Quagga, RIP and OSPF..............................................................................................................141
RIP Fundamentals......................................................................................................................141
OSPF Fundamentals..................................................................................................................142
Link State Advertisements.....................................................................................................142
Key OSPF And RIP Parameters................................................................................................143
Network Areas.......................................................................................................................143
10 RuggedCom