Archive forMay, 2008

Netscreen VPN How to

May 12, 2008 @ 5:43 pm · Filed under Firewall | Security

Open HTTP connection to Netscreen firewall.

Click +VPNs
Click +AutoKey Advanced
Click Gateway

Create your gateway from IP provided in Cybercon VPN Setup Sheet.

Gateway Name: Cisco Pix Gateway
Click Static IP Address: IP Address / Hostname: ip.ip.ip.ip
Enter Preshare Key: CYBERCON

Click Advanced
Security Level ( Match customer supplied Phase 1 Proposal )
pre-g2-3des-sha

Click Return at bottom
Click OK

Click AutoKey IKE
Click New
VPN NAME: Tunnel to Cisco Pix
Remote Gateway: Predefined Cisco Pix Gateway (What we made above in drop down list)
Click Advance
User Defined: Phase 2 Proposal ( Match customer supplied Phase 2 Proposal )
g2-esp-3des-sha
Click Return
Click OK

Click +Objects
Click +Addresses
Click List
Untrust -> New
Address Name: Netblock behind Cisco Pix
IP Address/Domain Name
Click IP/Netmask ip.ip.ip.ip / 24
Zone Untrust
Click OK

Click +Objects
Click +Addresses
Click List
Trust -> New
Address Name: ip.ip.ip.ip/24
IP Address/Domain Name
Click IP ip.ip.ip.ip/24

Create Policy

Click Policies
Untrust to Trust Go
Untrust to Trust, then click “New”
Name: Cisco Pix Tunnel
Source Address Book Entry: Netblock behind Cisco Pix
Destination Address Book Entry: ip.ip.ip.ip/24
Action: Tunnel
Tunnel VPN: Tunnel to Cisco PIX
Check Modify matching bidirectional VPN policy
Check logging
Check Position at Top
Click OK

Notify Customer VPN is setup.

Comments