Upload
others
View
1
Download
0
Embed Size (px)
Citation preview
Loading Internet Protocol Security (IPSec)
(CDR-882/780/790/990 Cellular Router)
Call Direct Document version 1.4
Last updated 17 December, 2010
Loading IPSec
To support IPSec functionality on your router two installation packages are required to be loaded via
the unit's Graphical User Interface (GUI).
1. Download the first firmware file named installer.tar.gz from the following link and save to your
computer:
http://media.netcomm.com.au/public/assets/file/0012/123042/installer.tar.gz
2. Download the second firmware file named ipsec-2.1.tar.gz from the following link and save to
your computer.
http://media.netcomm.com.au/public/assets/file/0018/123048/ipsec-2.1.tar.gz
3. Access the router webpage or GUI by navigating to http://192.168.1.50 in a web browser
using 'admin' (without quotes) for the username and 'password' for the password.
Note – If the IP address of the router is no longer the default (192.168.150) use this address instead.
If this address is unknown then to find the IP address the router is using:
Open a command prompt (Start > All Programs > Accessories > Command Prompt).
Type 'ipconfig' (without quotes) and press enter. Look for the default gateway address of the current
connection. This is the IP address of the router.
The screen shots below illustrate the steps required to access the Cellular Router’s web browser:
4. Click on Application Load/Save and select the installer.tar.gz file you have previously saved to
your computer and then click on the Upload button.
Do not remove any power or ethernet cables until the (first) firmware file completion screen as shown
below appears. Generally a firmware upgrade will take 2 – 3 minutes.
5. Now load the ipsec-2.1.tar.gz file using the same method in the previous step.
Do not power off or remove any cables until the firmware upgrade completion screen appears as
shown below.
6. Refresh the page (press the F5 button) and a new link labelled VPN should appear.
7. Select VPN to configure the IPSec tunnel on this page.
IPSEC is now installed
Sample Configuration for IPSec against a Cisco ISO12.3, Linksys
RV082 and Billion 7404
How To Establish and IPSEC tunnel between a CDM882 and Cisco IOS 12.3
This document provides a sample configuration for establishing an IPSEC tunnel between a CDM882
and a Cisco router running IOS 12.3.
NB: This configuration is provided as an example only, Call Direct cannot offer further assistance with
Cisco configuration.
CDM882 Configuration
Cisco Configuration
!
version 12.3
service timestamps debug datetime
msec service timestamps log datetime
msec no service password-encryption
!
hostname Gateway
!
boot-start-marker boot-end-
marker
!
logging buffered 10000 debugging enable secret 5
$1$EdiK$Y7Vl/O18AW78wYWtdRFma1 enable
password m00nm4n
!
no aaa new-model
ip subnet-zero
!
!
ip name-server 192.168.14.1
!
ip audit notify log ip audit
po max-events 100 ip ssh
break-string
!
!
!
crypto isakmp policy 1
encr 3des hash md5
authentication pre-share
group 2 lifetime 28800
crypto isakmp key CDCS address 10.0.0.0 255.255.255.0
!
!
crypto ipsec transform-set 3DES-MD5 esp-3des esp-md5-hmac
!
crypto dynamic-map dynmap
10 description CALLDIRECT
set transform-set 3DES-MD5
set pfs group2 match address
100 reverse-route
!
!
crypto map mymap 10 ipsec-isakmp dynamic dynmap
!
no voice hpi capture buffer no
voice hpi capture destination
!
!
interface FastEthernet0/0 ip address
10.192.1.80 255.255.255.0 no ip
redirects duplex auto speed auto
crypto map mymap
!
interface Serial0/0 no ip address shutdown !
interface FastEthernet0/1 ip address
192.168.1.50 255.255.255.0 no ip
redirects duplex auto speed auto
!
interface Serial0/1 no ip address shutdown
ip http server no ip http
secure-server ip
classless
ip route 0.0.0.0 0.0.0.0 10.192.1.254
!
!
access-list 100 permit ip 192.168.1.0 0.0.0.255 192.168.3.0 0.0.0.255
!
!
!
!
!
!
line con 0 exec-
timeout 0 0 logging
synchronous line aux
0
line vty 0 4
password password
login !
!
!
end
How To Establish an IPSEC tunnel between a CDM882 and Linksys RV082
This document provides a sample configuration for establishing an IPSEC tunnel between a CDM882
and a Linksys RV082.
NB: This configuration is provided as an example only, Call Direct cannot offer further assistance with
Linksys configuration.
CDM882 Configuration
RV082 Configuration
How To Establish an IPSEC tunnel between a CDM882 and Billion 7404
This document provides a sample configuration for establishing an IPSEC tunnel between a CDM882
and a Billion 7404 router.
NB: This configuration is provided as an example only, Call Direct cannot offer further assistance with
Billion configurations.
CDM882 Configuration
Billion Configuration