ZyXEL Communications P-202 User Manual

P-202H Plus v2 Support Notes

leftsubnet=192.168.10.0/24
leftnexthop=65.170.185.65
right=202.132.170.1
rightsubnet=192.168.0.0/24
rightnexthop=202.132.170.254
auto=start
pfs=no
authby=secret

ipsec.secrets:

65.170.185.111 202.132.170.1 : PSK "12345678"

2. Setup P-202H Plus v2 VPN

1. Using a web browser, login P-202H Plus v2 by giving the LAN IP address

of P-202H Plus v2 in URL field. The LAN IP in tihs example is 192.168.0.1,
default password to login web configurator is 1234.

2. Click Advanced, and click VPN tab on the left.
3. On the SUMMARY menu, Select a policy to edit by clicking Edit.
4. On the CONFIGURE-IKE menu, check Active check box and give a name

to this policy.

5. Select IPSec Keying Mode to IKE and Negotiation Mode to Main, Linux

FreeS/WAN only supports Main mode.

6. In Local section, choose Subnet Address as Address Type. Source IP

Address Start is 192.168.0.0 and End is 255.255.255.0 in this example.
(the secure network behind P-202H Plus v2)

7. In Remote section, choose Subnet Address as Address Type. Source IP

Address Start is 192.168.10.0 and End is 255.255.255.0. (the secure
network behind Linux)

8. My IP Addr is the WAN IP of P-202H Plus v2.
9. Secure Gateway IP Addr is the remote secure gateway IP, that is Linx

box in this example.

10. Select Encapsulation Mode to Tunnel.
11. Check the ESP check box. (AH can not be used in SUA/NAT case)
12. Select Encryption Algorithm to 3DES and Authentication Algorithm to

SHA1.

13. Enter the key string 12345678 in the Preshared Key text box, and click

Apply.

All contents copyright © 2006 ZyXEL Communications Corporation.

265