Configuring a virtual private network, Iolan-to-host/network – Perle Systems 5500161-40 User Manual

Configuring a Virtual Private Network

340

IOLAN SDS/SCS/STS/MDC User’s Guide, Version 4.0

Configuring a Virtual Private Network

You can configure the IOLAN to act as a Virtual Private Network (VPN) gateway using the IPsec
protocol. Any of the following scenarios can be configured using one IOLAN and a host/server
running IPsec software or two IOLANs, each acting as the VPN gateway. All the examples have

NAT

Traversal (NAT_T)

enabled, since both VPN gateways are running through routers.

IOLAN-to-Host/Network

The following example shows how to configure an IPsec tunnel between serial devices connected to
the IOLAN and a host/network.

NAT Traversal (NAT_T)

is enabled in this example (on both sides)

because the VPN tunnel is going private network to public network to private network. This example
uses an RSA signature for the authentication method, so the steps required to configure the
authentication are in this example.

Remote VPN

Gateway

172.16.45.1

Internet

192.168.45.12

192.168.45.87

External IP Address

196.15.23.56

172.16.45.99

192.168.45.99

External IP Address

199.24.23.88

Router

Router

Left

Right

192.168.45.45

IPsec Tunnel--Encrypted Data

Unencrypted

Data

Unencrypted

Data

1.

Configure the IPsec tunnel in the IOLAN: