Configuring VPN on System-E

 

Complete the following steps to configure a VPN connection on System-E. Use the information from your planning worksheets to configure VPN on System-E as follows:

  1. In iSeries™ Navigator, expand your system > Network > IP Policies.

  2. Right-click Virtual Private Networking and select New Connection to start the Connection wizard.

  3. Review the Welcome page for information about what objects the wizard creates.

  4. Click Next to go to the Connection Name page.

  5. In the Name field, enter CHIgw2MINhost.

  6. Optional: Specify a description for this connection group.

  7. Click Next to go to the Connection Scenario page.

  8. Select Connect your host to another gateway .

  9. Click Next to go to the Internet Key Exchange Policy page.

  10. Select Create a new policy and then select Balanced security and performance.

    If you get an error message stating "The certificate request could not be processed" you can ignore it because you are not using certificates for the key exchange.

  11. Optional: If you have certificates installed you will see the Certificate for Local Connection Endpoint page. Select No to indicate that you will be using certificates to authenticate the connection.

  12. Click Next to go to the Local Key Server page.

  13. Select IP version 4 address as the Identifier type field.

  14. Select 56.172.1.1 from the IP address field.

  15. Click Next to go to the Remote Key Server page.

  16. Select IP version 4 address in the Identifier type field.

  17. Enter 129.42.105.17 in the Identifier field.

    If the Firewall-C IP address is unknown, you can use *ANYIP as the identifier for the remote key server.

  18. Enter topsecretstuff in the Pre-shared key field

  19. Click Next to go to the Remote Data Endpoint page.

  20. Select IP version 4 subnet from the Identifier type field.

  21. Enter 10.8.11.0 in the Identifier field.

  22. Enter 255.255.255.0 in the Subnet mask field.

  23. Click Next to go to the Data Services page.

  24. Accept the default values, and then click Next to go to the Data Policy page.

  25. Select Create a new policy and then select Balanced security and performance.

  26. Click Next to go to the Applicable Interfaces page.

  27. Select TRLINE from the Line table.

  28. Click Next to go to the Summary page.

  29. Review the objects that the wizard will create to ensure they are correct.

  30. Click Finish to complete the configuration.

  31. When the Activate Policy Filters dialog box appears, select Yes, activate the generated policy filters then select Permit all other traffic.

  32. Click OK to complete the configuration.

 

Parent topic:

Scenario: Firewall Friendly VPN
Previous topic: Configuring VPN on Gateway-B
Next topic: Starting Connection