VPN Tracker for Mac OS X

Similar documents
VPN Tracker for Mac OS X

VPN Tracker for Mac OS X

VPN Tracker for Mac OS X

VPN Tracker for Mac OS X

VPN Configuration Guide D-Link DFL-800

VPN Configuration Guide LANCOM

VPN Configuration Guide WatchGuard Fireware XTM

VPN Configuration Guide D-Link DFL-200

VPN Configuration Guide. Cisco Small Business (Linksys) WRV210

VPN Configuration Guide. Cisco Small Business (Linksys) WRVS4400N / RVS4000

VPN Configuration Guide SonicWALL with SonicWALL Simple Client Provisioning

VPN Configuration Guide. Cisco Small Business (Linksys) RV016 / RV042 / RV082

VPN Quick Configuration Guide. Astaro Security Gateway V8

VPN Configuration Guide Netgear FVS338 / FVX538 / FVS124G

VPN Configuration Guide. ZyWALL USG Series / ZyWALL 1050

VPN Configuration Guide Linksys RV042/RV082

VPN Configuration Guide SonicWALL with SonicWALL Simple Client Provisioning

Configuring an IPSec Tunnel between a Firebox & a Check Point FireWall-1

VPN Configuration Guide. Juniper Networks NetScreen / SSG / ISG Series

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Cisco Firewall. Overview

VPN Configuration Guide DrayTek Vigor / VigorPro

How To Configure Apple ipad for Cyberoam L2TP

Fireware How To VPN. Introduction. Is there anything I need to know before I start? Configuring a BOVPN Gateway

VPN Configuration Guide. Parallels Remote Desktop for Mac

VPN Configuration Guide. Cisco ASA 5500 Series

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Fortinet Firewall. Overview

Configuring a VPN for Dynamic IP Address Connections

Configure an IPSec Tunnel between a Firebox Vclass & a Check Point FireWall-1

Configuring IPsec VPN with a FortiGate and a Cisco ASA

GNAT Box VPN and VPN Client

VPN Configuration Guide. Dell SonicWALL

How To Configure L2TP VPN Connection for MAC OS X client

Configuring a Check Point FireWall-1 to SOHO IPSec Tunnel

Configuration Guide. How to set up the IPSec site-to-site Tunnel between the D-Link DSR Router and the Sonicwall Firewall.

Watchguard Firebox X Edge e-series

VPN Configuration Guide. Linksys (Belkin) LRT214 / LRT224 Gigabit VPN Router

VPN Tracker for Mac OS X

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

Configuring an IPsec VPN to provide ios devices with secure, remote access to the network

VPN L2TP Application. Installation Guide

Configuring SSL VPN on the Cisco ISA500 Security Appliance

VPN. VPN For BIPAC 741/743GE

Fireware How To Network Configuration

Windows XP VPN Client Example

Configuring Windows 2000/XP IPsec for Site-to-Site VPN

Configuring an IPSec Tunnel between a Firebox & a Cisco PIX 520

UTM - VPN: Configuring a Site to Site VPN Policy using Main Mode (Static IP address on both sites) i...

VPNC Interoperability Profile

How To Industrial Networking

How do I set up a branch office VPN tunnel with the Management Server?

Cisco RV 120W Wireless-N VPN Firewall

Establishing a VPN tunnel to CNet CWR-854 VPN router using WinXP IPSec client

How To Configure An Ipsec Tunnel On A Network With A Network Gateways (Dfl-800) On A Pnet 2.5V2.5 (Dlf-600) On An Ipse Vpn

Using IPsec VPN to provide communication between offices

HOWTO: How to configure IPSEC gateway (office) to gateway

I. What is VPN? II. Types of VPN connection. There are two types of VPN connection:

Chapter 9 Monitoring System Performance

How to access peers with different VPN through IPSec. Tunnel

Best Practices: Pass-Through w/bypass (Bridge Mode)

VPN Wizard Default Settings and General Information

Lab 4.4.8a Configure a Cisco GRE over IPSec Tunnel using SDM

Cisco SA 500 Series Security Appliance

Configuration Example

Configuring IPsec VPN between a FortiGate and Microsoft Azure

Configuration Example

Network/VPN Overlap How-To with SonicOS 2.0 Enhanced Updated 9/26/03 SonicWALL,Inc.

How To Set Up A Vpn Tunnel Between Winxp And Zwall On A Pc 2 And Winxp On A Windows Xp 2 On A Microsoft Gbk2 (Windows) On A Macbook 2 (Windows 2) On An Ip

Creating a Gateway to Client VPN between Sidewinder G2 and a Mac OS X Client

Application Notes for Configuring a SonicWALL VPN with an Avaya IP Telephony Infrastructure - Issue 1.0

Configure IPSec VPN Tunnels With the Wizard

Apliware firewall. TheGreenBow IPSec VPN Client. Configuration Guide.

Configuration Example

VPN Configuration Guide. AVM FRITZ!Box

Global VPN Client Getting Started Guide

DFL-210/260, DFL-800/860, DFL-1600/2500 How to setup IPSec VPN connection

TheGreenBow IPsec VPN Client. Configuration Guide Cisco RV325 v1. Website: Contact:

Virtual Private Network and Remote Access

OvisLink 8000VPN VPN Guide WL/IP-8000VPN. Version 0.6

Configuring a Lan-to-Lan VPN with Overlapping Subnets with Juniper NetScreen/ISG/SSG Products

How To Setup Cyberoam VPN Client to connect a Cyberoam for remote access using preshared key

Configuring TheGreenBow VPN Client with a TP-LINK VPN Router

REMOTE ACCESS VPN NETWORK DIAGRAM

Configure VPN between ProSafe VPN Client Software and FVG318

Workflow Guide. Establish Site-to-Site VPN Connection using RSA Keys. For Customers with Sophos Firewall Document Date: November 2015

Virtual Private Network and Remote Access Setup

RouteFinder. IPSec VPN Client. Setup Examples. Reference Guide. Internet Security Appliance

Firewall Defaults and Some Basic Rules

VPN Solution Guide Peplink Balance Series. Peplink Balance. VPN Solution Guide Copyright 2015 Peplink

Juniper NetScreen 5GT

IPSecuritas 3.x. Configuration Instructions. Collax Business Server. for

How to Create a Basic VPN Connection in Panda GateDefender eseries

Basic ViPNet VPN Deployment Schemes. Supplement to ViPNet Documentation

How do I configure multi-wan in Routing Table mode?

Chapter 6 Virtual Private Networking

VPN PPTP Application. Installation Guide

Create a VPN on your ipad, iphone or ipod Touch and SonicWALL NSA UTM firewall - Part 1: SonicWALL NSA Appliance

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

Fireware Essentials Exam Study Guide

How To - Setup Cyberoam VPN Client to connect to a Cyberoam for the remote access using preshared key

Configuration Guide. How to establish IPsec VPN Tunnel between D-Link DSR Router and iphone ios. Overview

Transcription:

VPN Tracker for Mac OS X How-to: Interoperability with WatchGuard Firebox Internet Security Appliances Rev. 4.0 Copyright 2003-2005 equinux USA Inc. All rights reserved.

1. Introduction 1. Introduction This document describes how VPN Tracker can be used to establish a connection between a Macintosh running Mac OS X and a WatchGuard Firebox Internet Security Appliance. You can either use the Manual IPsec configuration or the Mobile User VPN configuration in order to get connected with VPN Tracker. The WatchGuard Firebox is configured as a router connecting a company LAN to the Internet. This paper is only a supplement to, not a replacement for, the instructions that have been included with your WatchGuard Firebox. Please be sure to read those instructions and understand them before starting. All trademarks, product names, company names, logos, screenshots displayed, cited or otherwise indicated on the How-to are the property of their respective owners. EQUINUX SHALL HAVE ABSOLUTELY NO LIABILITY FOR ANY DIRECT OR INDIRECT, SPECIAL OR OTHER CONSEQUENTIAL DAMAGES IN CONNECTION WITH THE USE OF THE HOW-TO OR ANY CHANGE TO THE ROUTER GENERALLY, INCLUDING WITHOUT LIMITATION, ANY LOST PROFITS, BUSINESS, OR DATA, EVEN IF EQUINUX HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. 2

2. Prerequisites 2. Prerequisites First you have to make sure that your WatchGuard Firebox has VPN support built in. Please refer to your WatchGuard Firebox manual for details. Furthermore you should use a recent WatchGuard Firebox fimware version. The latest firmware release for your WatchGuard Firebox appliance can be obtained from http://www.watchguard.com/ For this document, WatchGuard Version 7.1.B1444 has been used. When using Pre-shared key authentication you need one VPN Tracker Personal or Professional Edition license for each Mac connecting to the WatchGuard Firebox. VPN Tracker is compatible with Mac OS X 10.2.5+, 10.3 and 10.4. 3

3. Connecting a VPN Tracker host to a WatchGuard Firebox In this example the Mac running VPN Tracker is directly connected to the Internet via a dialup or PPP connection. The WatchGuard Firebox is configured in NAT mode and has the static WAN IP address 169.1.2.3 and the private LAN IP address 192.168.1.1. The Stations in the LAN behind the WatchGuard Firebox use 192.168.1.1 as their default gateway and should have a working Internet connection. Chicago Mac-VPN Tracker dynamic IP Local Address 10.1.2.3 New York WatchGuard Firebox WAN 169.1.2.3 LAN 192.168.1.1 192.168.1.10 192.168.1.20 192.168.1.30 LAN 192.168.1.0/24 Figure 1: VPN Tracker WatchGuard Firebox connection diagram 4

3.1 WatchGuard Firebox Manual IPsec Configuration Please create a new Branch Office VPN -> Manual IPsec configuration on the WatchGuard Firebox. The pre-defined VPN Tracker connection type has been created using the default settings for your WatchGuard Firebox appliance. If you change any of the settings on the WatchGuard Firebox, you will eventually have to adjust the connection type in VPN Tracker. Step 1 Add a Remote Gateway: Name: an arbritary name: (i.e. mac-vpntracker) Remote ID Type: User Name Gateway Identifier: an unique identifier (i.e. vpntracker@domain.com) Shared Key: your Pre-shared key (i.e. secretkey) Enable Aggressive Mode: checked Figure 2: WatchGuard - Remote Gateway 5

Step 2 Create a new tunnel with the previously defined gateway and choose a name for the tunnel. The default Phase 2 settings should be fine in most cases. Figure 3: WatchGuard - Select Gateway Figure 4: WatchGuard - Configure Tunnel 6

Step 3 Add Routing Policy: Local Network: Local network behind WatchGuard (i.e. 192.168.1.0/24) Remote Host: Virtual IP address of VPN Tracker client (i.e. 10.1.2.3) Tunnel: The tunnel you ve created before. Figure 5: WatchGuard - Add Routing Policy Please note: The Remote Host is not the public IP address of the client. After the first three steps the configuration should look like this: Step 1 Step 2 Step 3 Figure 6: WatchGuard - IPsec Configuration 7

Step 4 Add a Firewall Rule: Incoming traffic from and outgoing traffic to the IP address 10.1.2.3 must be allowed. To create a new Firewall setting, add a service and select the Packet Filter Any. On the Incoming tab select Enabled and Allowed from the popup menu. Then add the virtual IP address (10.1.2.3) to the From list and the IP address of the LAN (192.168.1.0/24) to the To list. For the Outgoing tab use the same values with interchanged From and To addresses: Figure 7: WatchGuard - Firewall Properties 8

3.2 WatchGuard MUVPN Configuration Please create a new Remote User -> Firebox Authenticated User on your WatchGuard firewall: Step 1 Create a new user and and enter a password for this user: Figure 8: WatchGuard - MUVPN User 9

Step 2 Configure allowed Access: Allow user access to: Local network behind WatchGuard (i.e. 192.168.1.0/24 ) Virtual IP address for mobile user: Virtual IP address of VPN Tracker client (i.e. 10.1.2.3 ) Figure 9: WatchGuard - MUVPN Access 10

Step 3 Configure Encryption and Authentication: Authentication: SHA1-HMAC Encryption: 3DES-CBC Key expires: every 24 hours Figure 10: WatchGuard - MUVPN Encryption 11

After Step 3 your configuration should look like this: Figure 11: WatchGuard - MUVPN - Overview 12

3.3 VPN Tracker Configuration Step 1 Add a new connection with the following options: Vendor: WatchGuard Model: your VPN device Figure 12: VPN Tracker - Connection Settings 13

Step 2 Change your Network Settings: VPN Server Address: public IP address of your VPN Gateway (e.g. 169.1.2.3 ) Local Address: a virtual IP address assigned to the VPN Tracker client (e.g. 10.1.2.3) Remote Network/Mask: network address and netmask of the remote network (eg. 192.168.1.0/255.255.255.0 ). Figure 13: VPN Tracker - Network Settings Please note: In order to access multiple remote networks simultaneously, just add them by pressing the Plus-button. 1 1 For this step VPN Tracker Professional Edition is needed. 14

Step 3 Change your Authentication Settings: Pre-shared key: the same Pre-shared key as in the WatchGuard configuration. Figure 14: VPN Tracker- Authentication Settings 15

Step 4 Identifier Settings (Manual IPsec configuration): Local Identifier: E-mail address (e.g. vpntracker@domain.com ). Local Identifier type: Email Remote Identifier: Remote endpoint IP address. Figure 15: VPN Tracker - Identifier Settings 16

Identifier Settings (Manual User VPN configuration): Local Identifier: your username (e.g. vpntracker) Local Identifier type: Email Remote Identifier: Remote endpoint IP address Figure 16: VPN Tracker - Identifier settings - MUVPN Step 5 Save the connection and Click Start IPsec in the VPN Tracker main window. You re done. After 10-20 seconds the red status indicator for the connection should change to green, which means you re securely connected to the WatchGuard. After IPsec has been started, you may quit VPN Tracker. The IPsec service will keep running. Now to test your connection simply ping a host in the WatchGuard network from the dialed-in Mac in the Terminal utility: ping 192.168.1.10 17

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information