Site to Site VPN tunnel using NGX(R50)

[Mickyvgb]

Hi all

does anyone have a simple user guide on how to set up a VPN site to site tunnel
We have tried to set one up but it seems the packets are not routing though the tunnel.
The remote system is an Cisco PIX
if you could email me at m.varney@hotmail.com



I know I should go on a training course but getting the money out of the IT manager is a bloody nightmare !! I am sure managers see there budgets as there own private money !! sorry for the moan !! :-(

[rasberrystolli]

VPN Setup

What you need to know
• Remote site external gateway (ISP)
• What networks they will allow you to get to
• Create a network object for the remote site’s network. If more than one network create a network group.
• Create an interoperable device. Use this because it doesn’t have to be a checkpoint firewall on the other end. If you use checkpoint firewall you have to specify the version. If this version changes the VPN will break.
• Create interoperable device and specify their remote gateway. Manually define the vpn domain. Put in the remote access group you just created for the remote network. Your firewall also has to have vpn domain manually.
• Create a VPN community add participating gateways- your firewall and theirs
• VPN properties
• VPN – advanced- disable NAT (what ever you use it must match theirs)
• Key exchange AES-256 SHA1 (what ever you use it must match theirs)
• Shared secret click and use shared secret for all external members. Click edit. Enter secret xxxxxx (make complicated) must be the same at each site.
• Set up rules
• Source (your network group and theirs) destination (your network group and theirs) VPN add your VPN community Service Any
• Push policy