IPSec VPN Local and Remote Group Setup on WRVS4400N Routers

Objective

Internet Protocol Security (IPSec) is a security protocol used to secure Internet protocol communication through encryption. IPSec secures data that moves between two end points with an association to any specific application. A virtual private network (VPN) provides access to the internal private network to users at any location with access to the public Internet on the router. IPSec VPN can be locally or remotely grouped. The local group determines who in the network can access the tunnel while remote group determines who from the remote network can connect to the network through the tunnel on the WRVS440N router.

This article explains how to configure the IPSec VPN Local and Remote Group Setup on WRVS4400N router.

Applicable Devices

• WRVS4400N

Software Version

• v.2.0.2.1

Configure IPSec VPN Local and Remote Group Setup

Step 1. Log in to the web configuration utility and choose VPN > IPSec VPN. The IPSec VPN page opens:

IPSec VPN Local Group Setup

Step 1. Choose an option in the Local Security Gateway Type drop-down list.

• IP Only — If you choose IP Only, a specific IP address will be assigned. The WAN IP address of the router will appear automatically in the IP Address field.

• IP + Domain Name Fully Qualified Domain Name(FQDN) Authentication — If you choose this, the Domain Name will appear automatically and the IP address field will automatically take router WAN IP Address. Enter the domain name in the Domain Name field.

Step 2 . Choose an option from the Local Security Group Type drop-down list. This option allows the user to choose the local LAN users that can use the VPN tunnel, which may be single IP Address or Sub-Network.

• IP Address — Enter the IP Address on the local network. The IP address by default is 192.168.1.1

• Subnet Mask — Enter the subnet mask to determine the IP addresses on the local network.

Step 3. Click Save to save the configuration.

IPSec VPN Remote Group Setup

Step 1. Choose an option from the Remote Security Gateway Type drop-down list.

• IP Only — If you choose IP Only, the IP Address field will appear automatically for the WAN IP address of the router.

• IP + Domain Name (FQDN) Authentication — If you choose this, the Domain Name will appear automatically and the IP Address field will automatically take the router WAN IP Address. Enter the domain name in the Domain Name field.

• Any — If you choose Any, the gateway accepts requests from any IP Address.

Timesaver: If IP Only is not chosen from the drop-down list, skip Step 2 and proceed to Step 3.

Step 2. Choose an option from the drop-down list.

• IP address — Enter the IP address for the router that serves as a default gateway for the device on the local network.

• IP by DNS Resolved — Enter the domain name of your Internet Service Provider (ISP).

Step 3. Choose an option from the Remote Security Group Type drop-down list. This option allows the local LAN users use the VPN tunnel, which may be single IP Address or Sub-Network.

• IP Address — Enter the IP Address on the Local Network.

• Subnet Mask — If Local Security Group Type is set to Subnet, enter the mask to determine the IP addresses on the Local Network.

Step 4. Click Save to save the configuration.