L2TP-IPSec configuration -RouterOS intermediate tutorial 04

Enterprise 2019-10-25 08:45:10 views: null

We try to configure the hand L2TP / IPsec, this simple point, the network topology See all 03 intermediate tutorial.

A, HQ router configuration:

First, we must first configure the IP, the IP can be used to connect up communications after the branch.

IP configuration, there are two, one is DHCP, one is assigned to IP.

In the enterprise branch interconnection, ROS and ROS docking, the tendency to assign IP, so that management is more convenient, and assigning IP, then the account is configured inside, so we went with the account.

Three-tier exchange wrote a default route

wps37E3.tmp

1. Configure account and IP

Click PPP> Secrets Click on the + sign to create a new account

wps37E4.tmp

Pop-up window Description:

wps37E5.tmp

At the headquarters router can automatically route to the end of the injection.

wps37E6.tmp

Speed:

wps37F7.tmp

The same configuration of the three branches account

wps37F8.tmp

2. Enable L2TP and IPSec settings Password:

wps37F9.tmp

Well, that's the headquarters of ROS router set up.

Second, the branch configuration ROS

PPPOE and segments like configuration is not to say, you can see basic tutorial.

Or click PPP> Click the plus sign, select L2TP Client

wps37FA.tmp

Sets the name of the routine inside

wps37FB.tmp

Switch to Dial Out, set the following parameters:

wps37FC.tmp

Click OK, to start the connection.

Logs can be seen inside the following parameters:

wps37FD.tmp

Why will first use the 500 port, and then use the 4500 port, this is because we PPPOE network, in the middle do NAT, then use port 4500. Port 500 is a public network to the public network.

Similarly, we look to configure L2TP / IPSec between OfficeB and OfficeC, ignored here. ( In fact, because L2TP / IPSEC only one client. The client common to a plurality of connection will be off at the top in a public NAT IP connection to a public IP network. Topology as now need three PPPOE server can so ... )

wps37FE.tmp

Third, configure routing

1. Headquarters:

Just create L2TP account when routing the headquarters we have it automatically configured.

Click IP> Routes can see the route has been automatically added.

wps37FF.tmp

At this point we can ping the headquarters of the branch network.

wps3800.tmp

2. branch routing table configuration

Branch was not generated automatically routing information, so you want to manually configure the routing table about what to inform the headquarters of the network router yes.

Click IP> Routes

wps3801.tmp

Further a configuration same network segment 192.168.13.0

wps3802.tmp

Then arranged in the same route branch B, C of the branch.

3. Test connectivity to the branch headquarters, has been up to.

wps3803.tmp

:( computer test in accordance with the topology, test PC1, PC2, PC3 network connectivity)

wps3804.tmp

Finish

Guess you like

Origin blog.51cto.com/13796759/2445268
Recommended
NetBSD bans submission of code generated by AI
Ranking
Talk dubbo of LRUCache
Chapter 1 Learning Summary
Introduction to Virtualization
pytorch 调用lstm
Six modules
[8086] The natural number of 1 to 36 into a 6x6 two-dimensional array of line-sequentially, and then print out the lower left half of the triangular array
mybatis mapper mapping file $ # {} {} understanding and
C language input and output buffer
c language floating-point input and output
andorid P version compatible, refer to Huawei
Daily
More
2024-05-18(31)
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)

Code World

© 2018 codetd.com