Configuring a VPN connection on System A for remote clients

IP addresses used in this scenario are meant for example purposes only. They do not reflect an IP addressing scheme and should not be used in any actual configuration. Use your own IP addresses when completing these tasks.

1. From iSeries™ Navigator, expand System A > Network > IP Policies.

2. Right-click Virtual Private Networking and select New Connection to start the VPN New Connection wizard. Review the Welcome page for information about what objects the wizard creates.

3. Click Next to go to the Connection Name page.

4. In the Name field, enter SalestoRemote.

5. Optional: Specify a description for this connection group. Click Next.

6. On the Connection Scenario page, select Connect your host to another host. Click Next

7. On the Internet Key Exchange Policy page, select Create a new policy, and then select Highest security, lowest performance. Click Next.

8. On the Certificate for Local Connection Endpoint page, select No. Click Next.

9. On the Local Key Server page, select Version 4 IP address as the identifier type. The associated IP address should be 192.168.1.2. Click Next.

10. On the Remote Key Server page, select Any IP address in the Identifier type field. In the Pre-shared key field, enter mycokey. Click Next.

11. On the Data Services page, enter 1701 for the local port. Then select 1701 for the remote port and select UDP for the protocol. Click Next.

12. On the Data Policy page, select Create a new policy and then select Highest security, lowest performance. Click Next.

13. On the Applicable Interfaces page, select ETHLINE. Click Next.

14. On the Summary page, review the objects that the wizard will create to ensure they are correct.

15. Click Finish to complete the configuration. When the Activate Policy Filters window opens, select No, packet rules will be activated at a later time. Click OK.

 

Parent topic:

Configuring VPN connection to remote users