Contents
Index
Security - IPSec VPN with callback
Introduction
Configuring the licence
Configuration of ISDN interfaces
Configuring internet access
Configuring IPSec
Configuring the IPSec peer and callback
Changing the Phase-1 Profiles
Changing the Phase-2 profile
Result
Checking the configuration
Testing the connection and the ISDN callback
Overview of configuration steps
Security - IPSec client authentication via XAuth on Microsoft RADIUS Server (IAS)
Introduction
Configuration
Configuration of the VPN gateway
Configuration of the Windows 2003 RADIUS Server
Configuration of bintec secure IPSec clients
Checking the connection
Windows login per VPN (optional)
Overview of configuration steps
Security - VPN IPSec authentication with KOBIL SecOVID one-time password request
Introduction
Configuration
Installation of the KOBIL SecOVID server
Configuration of the VPN gateway
Configuration of bintec secure IPSec clients
Overview of configuration steps
Security - Certificate-based VPN IPSec with optional KOBIL SecOVID one-time password request
Introduction
Configuration
Setting up the OpenSSL certification authority
Generation of user certificates
Configuration of the VPN gateway
Configuration of bintec secure IPSec clients
Setup of the VPN IPSec tunnel
Additional securing of the VPN IPSec tunnel with a one-time password (optional)
Adjusting the VPN gateway configuration for one-time password request
Adjusting the bintec Secure IPSec configuration for one-time password request
Overview of configuration steps
Security - VPN IPSec tunnel via HTTPS between the bintec Secure IPSec Client and a bintec router
Introduction
Configuration
Configuration of the VPN gateway
Configuration of the VPN IPSec tunnel
Enable IPSec Pathfinder function
Configuration of bintec Secure IPSec Client
Overview of Configuration Steps
Security - IPSec with certificates
Introduction
Configuration
Creating an IPSec peer
Changing the Phase-1 Profiles
Changing the Phase-2 Profiles
Configuring DynDNS
Requesting and importing certificates
Changing the IPSec tunnel
Result
Checking the connection
Overview of configuration steps
Security - IPSec with dynamic IP addresses and DynDNS
Introduction
Configuration
Configuration on the first router (Location A)
Configuration on the second router (Location B)
Checking the connection
Overview of configuration steps
Security - Bridging over an IPSec tunnel
Introduction
Configuration at location A (bintec be.IP plus-1)
Configuration at location B (bintec be.IP plus-2)
Overview of configuration steps
Security - Stateful Inspection Firewall (SIF)
Introduction
Firewall configuration
Configuring aliases for IP addresses and network address
Configuring service sets
Configuring filter rules
Result
Checking the configuration
Overview of configuration steps
Security - VPN connection via a SMS PASSCODE server
Introduction
Configuration
Information during installation and configuration of the SMS PASSCODE server
Preparation for installing the SMS PASSCODE server
Installation of SMS PASSCODE server
Configuration of Web Administration Tool
Configuration of RADIUS server to connect the VPN gateway
Configuration of the VPN gateway
Configuration of bintec Secure IPSec Client
Testing of VPN connection/debug messages from the VPN gateway
Overview of Configuration Steps