HotBrick LoadBalancer LB-2 User Manual

How To establish an IPSec VPN tunnel with LB-2 VPN

Property of HotBrick — 2005

3

Figure 2 - Global Setting for Site A

5. Under the Global Setting, make sure you enable the WAN interface that you want the VPN IPSec
tunnel to establish through.
6. Both WAN1 and WAN2 can initiate and establish VPN Tunnels
7. Figure 2 shows the Global Parameters for WAN1. Remember that these parameters must be
identical at both sites. Below are some recommended values:

•

Phase 1 DH Group – DH Group 1 (768 bit)

•

Phase 1 Encryption Method – 3DES

•

Phase 1 Authentication Method – MD5

•

Phase 1 SA Lifetime – 28800

8. Once you have selected the Global Parameters then hit Submit.
9. The LB-2 will be restarted and refreshed to save the settings.
10. After the settings are refreshed, click on Policy Setup
11. Under IPSec Traffic Binding, input a name for “Tunnel Name”. In Figures 3 and 4 below, we have
the tunnel name “LB2VPN”.
12. Make sure you check the enable box for “Tunnel”.
13. For WAN port you can bind the tunnel to WAN1, WAN2 or ANY. Since we are building a tunnel
on WAN1, we will be specific and select WAN1 on the WAN Port.
14. If you have multiple PPPoE sessions on the WAN ports make sure you select the appropriate
session.