Cradlepoint to Adtran NetVanta VPN Setup Example...Global Leader in 4G LTE Network Solutions 805 W. Franklin Street Boise, ID 83702 | Toll Free: +1.855.813.3385 | Local: +1.208.424.5054

Global Leader in 4G LTE Network Solutions

805 W. Franklin Street Boise, ID 83702 | Toll Free: +1.855.813.3385 | Local: +1.208.424.5054 | Fax: +1.208.429.6852 | cradlepoint.com 1

Cradlepoint to Adtran NetVanta VPN Setup Example

Summary

This document will guide you through creating an IPsec VPN tunnel between a Series 3 Cradlepoint router and an Adtran

NetVanta 3120 router. The IPsec tunnel in this example assumes that the WAN sources attached to both routers are publicly

routable and not behind a NAT.

Configuration

Configuration Difficulty: Intermediate

Configuring the Cradlepoint:

- Step 1: Log into NCOS. For help with logging in please click here.

- Step 2: Click on Networking and select Tunnels and then IPSec VPN.

- Step 3: Click the Add button to create a new IPsec Tunnel Policy.

- Step 4: Give the tunnel a name for easy identification.

- Step 5: Enter Cradlepoint as the Local Identity

- Step 6: Enter NetVanta3120 as the Remote Identity.

- Step 7: Enter a Pre-Shared Key.

- Step 8: The Initiation Mode may be set to On Demand or Always On depending upon your needs.

http://knowledgebase.cradlepoint.com/articles/Support/Accessing-the-Setup-Pages-of-a-Series-3-CradlePoint-router?c=WiPipe_Series_3&c=All_Products



- Step 9: Click Next to continue.

- Step 10: Enter the Cradlepoint's local network address and netmask for the network(s) that will be made available

across the VPN into the Local Networks section.


- Step 12: Enter the Public IP Address (or hostname if applicable) of the WAN Interface of the NetVanta into

the Remote Gateway field.

- Step 13: Enter the NetVanta's local network address and netmask for the network(s) that will be made available

across the VPN into the Remote Networks section.




- Step 15: For IKE Phase 1, ensure the settings match those set in the NetVanta.

o Note: The settings used here are up to you, the only requirement is that they match on both the Cradlepoint

and NetVanta. This applies for both Step 14 and Step 16.


- Step 17: For IKE Phase 2, again ensure the settings match those set in the NetVanta.




- Step 19: For Dead Peer Detection leave the default settings.

- Step 20: Click Finish to create the tunnel.

- Step 21: Click Enable VPN Service and then Save to start the VPN service on the Cradlepoint.



Configuring the Adtran NetVanta:

- Step 1: Log into the Adtran's setup pages.

- Step 2: Click the Data tab.

- Step 3: Under VPN click on VPN Wizard.

- Step 4: At the wizards welcome page, click Next to continue.

- Step 5: Select Typical Settings.




- Step 7: In the VPN Peer Description field, enter a name for the remote Cradlepoint.


- Step 9: Select the Adtran's public WAN interface in the Public Interface field.


- Step 11: Enter the Cradlepoint's WAN IP in the Peer IP Address field.


- Step 13: Enter the Cradlepoint's local network address and netmask for the network(s) that will be made available

across the VPN into the Remote Subnet and Remote Subnet Mask fields respectively.




- Step 15: Enter the Adtran's local network address and netmask for the network(s) that will be made available

across the VPN into the Local Networks section by either selecting it from the Use Network from field or by

manually entering it.


- Step 17: Enter the Pre-Shared Secret.

o Note: This should match the Pre-Shared Key from Step 7 of the Cradlepoint configuration.


- Step 19: For the Remote ID Type field choose Allow Any Remote ID.



o Note: It is also possible to use an e-mail address or IP address in this field if preffered, as long as both sides

match. If you use an option other than Allow Any Remote ID for this field, it will need to match the Local

Identity value from Step 5 of the Cradlepoint configuration.


- Step 21: For the Local ID Type field choose Domain Name. Leave the Local ID Value at the default value.

o Note: The Local ID Value should match the Remote Identity value from Step 6 of the Cradlepoint

configuration.


- Step 23: On the Confirm Settings page take note of the IKE & IPsec settings that the Netvanta selected by default.

These will need to match those set in the Cradlepoint's configuration in Steps 17 and 19.

o Note: If these do not match, edit the Cradlepoint's configuration to match those selected by the NetVanta.

the IKE Paramaters settings should match the IKE Phase 1 settings from Step 17 of the Cradlepoint

configuration and the IPsec Paramaters settings should match the IKE Phase 2 settings from Step 19 of the

Cradlepoint configuration.



- Step 24: At the Wizard Complete page, click Exit to return to the main Netvanta UI.

Documents

Cradlepoint to Adtran NetVanta VPN Setup Example...Global Leader in 4G LTE Network Solutions 805 W. Franklin Street Boise, ID 83702 | Toll Free: +1.855.813.3385 | Local: +1.208.424.5054