Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick IPsec (Road Warrior Howto): Difference between revisions

← Older editNewer edit →
Content deleted Content added
AA-Andrew (talk | contribs)
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,616 edits
AA-Andrew (talk | contribs)
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,616 edits
Line 130: Line 130:
===Install the CA certificate===
===Install the CA certificate===
To install the certificate:
To install the certificate:
* Double-click on <tt>Certificates (Local Computer)</tt> in the left pane, to open the certificate store names, and then right-click on <tt>Trusted Root Certification Authorities</tt> in the centre pane.
# Double-click on <tt>Certificates (Local Computer)</tt> in the left pane, to open the certificate store names, and then right-click on <tt>Trusted Root Certification Authorities</tt> in the centre pane.
* Select <tt>All Tasks</tt> and then <tt>Import...</tt>
# Select <tt>All Tasks</tt> and then <tt>Import...</tt>
* Click <tt>Next</tt> and browse to where you saved the CA .crt file.
# Click <tt>Next</tt> and browse to where you saved the CA .crt file.
* Click <tt>Next</tt> and check that the certificate will be placed in the trusted root store.
# Click <tt>Next</tt> and check that the certificate will be placed in the trusted root store.
* Click <tt>Next</tt> again, and then <tt>Finish</tt>.
# Click <tt>Next</tt> again, and then <tt>Finish</tt>.


There - wasn't that easy! Thank you Microsoft.
There - wasn't that easy! Thank you Microsoft.
Line 140: Line 140:
Now you need to set up the IPsec network connection details.
Now you need to set up the IPsec network connection details.


* Go to Control Panel and select <tt>Set up a new connection or network</tt>.
# Go to Control Panel and select <tt>Set up a new connection or network</tt>.
* Select <tt>Connect to a Network</tt> and choose <tt>Connect to a Workplace</tt>.
# Select <tt>Connect to a Network</tt> and choose <tt>Connect to a Workplace</tt>.
* Click <tt>Next</tt>, select <tt>No, create a new connecton</tt>, <tt>Next</tt>
# Click <tt>Next</tt>, select <tt>No, create a new connecton</tt>, <tt>Next</tt>
* Choose <tt>Use my Internet connection</tt>
# Choose <tt>Use my Internet connection</tt>
* Insert the server name (eg <tt>server.example.com</tt>), and choose whatever you like to name the connection (Destination name).
# Insert the server name (eg <tt>server.example.com</tt>), and choose whatever you like to name the connection (Destination name).
* Select <tt>Don't connect now; ...</tt>
# Select <tt>Don't connect now; ...</tt>
* You don't need to enter User name and password as it will ask again later
# You don't need to enter User name and password as it will ask again later
* Click on <tt>Create</tt> and then <tt>Close</tt> (Don't connect yet!)
# Click on <tt>Create</tt> and then <tt>Close</tt> (Don't connect yet!)
* Back at the Network and Sharing Center dialog, select <tt>Connect to a network</tt>
# Back at the Network and Sharing Center dialog, select <tt>Connect to a network</tt>
* Right-click the connection you have just created in the pop-up box and select <tt>Properties</tt>
# Right-click the connection you have just created in the pop-up box and select <tt>Properties</tt>
* Select the <tt>Security</tt> tab, and change the Type of VPN to IKEv2.
# Select the <tt>Security</tt> tab, and change the Type of VPN to IKEv2.
* EAP-MSCHAPv2 should already be selected.
# EAP-MSCHAPv2 should already be selected.
* Click <tt>OK</tt>
#Click <tt>OK</tt>


You should now be ready to connect - select <tt>Connect to a network</tt> again, click
You should now be ready to connect - select <tt>Connect to a network</tt> again, click
Retrieved from "http://support.aa.net.uk/FireBrick_IPsec_(Road_Warrior_Howto)"