User`s manual
EDR-G903/G902 Features and Functions
3-51
Examples for Typical VPN Applications
Site to Site IPSec VPN tunnel with Per-shared Key
The following example shows how to create a secure LAN to LAN VPN tunnel between the Central site and
Remote site via an Intranet network.
VPN Plan:
• All communication from the Central site network (100.100.1.0/24) to the Remote site Network
(100.100.3.0/24) needs to pass through the VPN tunnel.
• Intranet Network is 100.100.2.0/24
• The configuration of the WAN/LAN interface for 2 EtherDevice Routers is shown in the following table.
EDR-G903
Interface Setting
Configuration EtherDevice Router (1) EtherDevice Router (2)
WAN IP 100.100.2.1 100.100.2.2
LAN IP 100.100.1.1 100.100.3.1
Based on the requirement and VPN plan, the recommended configuration for VPN IPSec is shown in the
following table
Configuration EtherDevice Router (1) EtherDevice Router (2)
Tunnel Setting Connection Type Site to Site Site to Site
Remote VPN gateway 100.100.2.2 100.100.2.1
Startup mode Wait for Connection Start in Initial
Local Network /
Netmask
100.100.1.0 /
255.255.255.0
100.100.3.0 /
25.255.255.0
Remote Network /
Netmask
100.100.3.0 /
25.255.255.0
100.100.1.0 /
255.255.255.0
Key Exchange Per-shared Key 12345 12345
Data Exchange Encryption / Harsh 3DES / SHA1 3DES / SHA1