PLANET MH-2300 User Manual

Gigabit Multi-Homing VPN Security Gateway

MH-2300

200

z Tick the boxes of “Accept unsecured communication, but

always respond using IPsec” and “Use session key
perfect forward secrecy (PFS)”.

z Click Add.
z In the New Security Method dialog box, select Custom

and then click Settings.

¾ In

the

Custom Security Method Settings dialog

box, follow the steps below:

— Tick the box of “Data integrity and encryption

(ESP)”.

— Integrity algorithm: Select “MD5”.
— Encryption algorithm: Select “3DES”.
— Under

the

Session key settings section, type

in “3600” in the seconds field for the key
generation interval.

— Click

OK.

¾ Click

OK.

z Click OK to complete the settings.

‹ Select “New Filter Action” from the Filter Actions.

„ In

the

New Rule Properties dialog box, click the Authentication

Methods tab. Next, select “Kerberos” from the Authentication
method preference order and then click Edit.
‹ In the Edit Authentication Method Properties dialog box,

follow the steps below:
z Tick the box of “Use this string (preshared key)” and enter

“123456789” in the corresponding field.

z Click OK to complete the settings.

‹ Select “Preshared Key” from the Authentication method

preference order.

„ In

the

New Rule Properties dialog box, click the Tunnel Setting

tab:
‹ Select the radio box of “Tunnel endpoints are specified by

these IP addresses”.

‹ Specify the IPv4 tunnel endpoint. i.e., 61.11.11.11.

„ In

the

New Rule Properties dialog box, click the Connection Type

tab:
‹ Tick the box of “All network connections”.
‹ Click

Apply.

‹ Click

OK to complete the settings.

„ Select “VPN_B Local To Remote” from the IP Security rules.