PLANET MH-2300 User Manual

Gigabit Multi-Homing VPN Security Gateway

MH-2300

234

Step 6. Tick the radio box of “Use both algorithms” in the IPSec Settings

section, select “3DES” for Encryption Algorithm and “MD5” for
Authentication Algorithm.

IPSec Algorithm Settings

Step 7. In the Advanced Settings (Optional) section, select “DH 1” for PFS

Key Group, enter “3600” in the ISAKMP SA Lifetime field and
“28800” in the IPSec SA Lifetime field.

Advanced Settings

Step 8. Select “Aggressive mode” for IKE Negotiation as well as enter

“11.11.11.11” in the Local ID field and “@abc123” in the Peer ID field.

IKE Negotiation Settings

The Local ID / Peer ID field can be:
„

Left blank to use the public IP.

„

Specified with a valid IP; the two fields cannot be identical, e.g.,
“11.11.11.11” and “22.22.22.22”.

„

Specified with a leading at-sign (@) followed by an alphanumeric string,
e.g., “@123a” or “@abcd1”.

Step 9. The IPSec autokey rule is successfully added.

IPSec Autokey Rule Successfully Added

Step 10. Under

Policy Object > VPN > Trunk, set as shown below:

„ Name: Specify a name for the VPN trunk.
„ Local Settings: Select “LAN” for Interface and specify the subnet

and netmask of Company A.

„ Remote Settings: Specify the subnet and netmask of Company

B.

„ Select “VPN_A” from the Available Tunnels column on the left,

and the click Add.

„ Tick the box of “Enable NetBIOS Broadcast over VPN”.