Hi, all guys: I really really need your kind help. Our company is doing a project with a big company(Partner). The partner is a Telco, which has a VPN behind a Cisco router. It requires our company's server still use VPN and make a gateway-to-gateway secure tunnel connection to them. The problem is that our web server is a stand alone server in data center, and I cannot assign an internal IP to our server or adding a new NIC to the server. I have found the document which helps to build a gateway to gateway secure connection. And I don't think this will help me. Some other guy advice me that setting up a IPsec tunnel will help us. Here is the requirement of the Telco(our partner): -------------------- The configuration on Telco end are as below for site-to-site VPN connection. Telco Peer IP address: 207.97.104.83 Telco Server IP address: 192.168.55.40 and 192.168.55.21 (Phase 1 connection parameters) Encryption algorithm (DES or 3DES): 3DES Hash algorithm (SHA or MD5): SHA Diffie-Hellman group ID for phase 1(Grp 1 or Grp 2): Group 2 IKE lifetime value: 86400 secs (Phase 2 connection parameters) Encryption algorithm (DES or 3DES): 3DES Hash algorithm (SHA or MD5): SHA IPSEC lifetime value: 28800 secs PFS: YES (with DH Group 2) Preshared Key: xxxxxxxxxxxxxxxxxxxx Pls note that the IP address range 192.168.51.216/29. Let us know which IP address is configured for your server. With regards to your current setup, it looks like to client-to-site vpn. Thus, you have to look into the site-to-site configuration. ---------------------- Thanks for help. thanks hongbing
Are you using Windows Server 2003 on your side, first of all? As far as I recall, in Windows 2000 you were unable to configure L2TP VPN with preshared keys, you had to use certificates only.
Thanks for reply. I am using windows server 2003 in my side. can you tell me how to config? thanks hongbing
Check out this link it tells you how to configure your windows machine to form a tunnel with a pix http://www.cisco.com/en/US/customer...s_configuration_example09186a00800946f5.shtml
Thanks for the reply. But I cannot open the link. Can you copy&paste the content here? thanks hongbing