domingo, 4 de marzo de 2012

How to configure VPN with DDNS solution on a P661/P662 series router?

As your IP address, you can use either the DDNS address or remote security gateway address in P661/P662 series VPN configuration.
This is a step by step illustration of how to configure a VPN tunnel in these two different situations.

Part I. DDNS as my IP address:

 
The IP addresses we use in this example are as shown below.
PC 1 
Prestige A
Prestige B
PC 2
192.168.1.33
LAN: 192.168.1.1
WAN:  zyxel1.gotdns.com
LAN: 192.168.35.1
WAN:  210.59.1.5
192.168.35.33

The configuration guide below is based on Prestige A.
1. Please prepare a DDNS domain name first. ZyXEL P661/P662 series router supports the DDNS services provided by http://www.dyndns.org/. You can apply a new account from this organization.

2. Login to P661/P662 configuration page and switch to Advanced Setup > Dynamic DNS and type the DDNS host name, email address, user name and password. Please remember to check the Active check box to enable the Dynamic DNS service.

3. Now the DDNS domain name binding IP address should be upgraded to the P661/P662 WAN IP address. You can try to ping the DDNS domain name and see if the IP address is gathered successfully.

4. Switch to Advanced Setup > VPN and click edit icon to edit a new VPN rule.
The most important is to configure My IP Address as 0.0.0.0, which means the P661/P662 will get the wan IP address (Dynamic DNS IP address) as my IP address automatically. Other settings are the same as for normal VPN tunnel configuration.

Part II. DDNS as Secure Gateway Address:

 
The IP addresses we use in this example are as shown below.
PC 1 
Prestige A
Prestige B
PC 2
192.168.1.33
LAN: 192.168.1.1
WAN:  210.59.1.5
LAN: 192.168.35.1
WAN:  zyxel1.gotdns.com
192.168.35.33

The configuration guide below is based on Prestige A.
1.      Ask the remote Prestige B DDNS name and try if the address is reachable.

2. Switch to Advanced Setup > VPN and click edit icon to edit a new VPN rule.
The most important is to set Secure Gateway Address to zyxel1.gotdns.com, which means the P661/P662 will resolve this DDNS domain name to IP address and try to establish a tunnel to this IP address. Other settings are the same as for normal VPN tunnel configuration.

3. Now, we can try to dial up a VPN tunnel to remote gateway using DDNS address.

Fuente:  http://www.zyxel.com/support/knowledge_base/kb_detail_2328.shtml
Publicado por en No hay comentarios:
Etiquetas: ,
Suscribirse a: Entradas (Atom)