Agenda - PowerPoint PPT Presentation
Title: Agenda
1
???????? ????(?????????)
2
Agenda
- Netscreen???(??????????)
- Windows???(??????????)
- ????
3
?)RemotePC?192.168.1.0/24??VPN??????????
172.16.0.0/24
192.168.1.0/24
10.0.0.0/24
RemotePC
172.16.0.1
10.0.0.1
192.168.1.1
172.16.0.100
10.0.0.2
??????????????????????? ???Microsoft???????IPsec
Client??????
4
Netscreen???
????????????????
? NetworkgtInterfaces ???
? ?New?????????
5
Netscreen???
????????????????
? ?Unnumbered????
? ?OK?????????
6
Netscreen???
????????????????
Tunnel????????????????????
7
Netscreen???
??????????
? ObjectsgtAddressesgtList ???
? ?New?????????
8
Netscreen???
??????????
? ????IP???????
? ???????????
? IP/Netmask???
? ?OK?????????
9
Netscreen???
??????????
? Trust ???
? ?New?????????
10
Netscreen???
??????????
? ????????????
? ????IP???????
? IP/Netmask???
? ?OK?????????
11
Netscreen???
VPN??????????
? VPNsgtAutoKey AdvancedgtGateway ???
? ?New?????????
12
Netscreen???
VPN??????????
? ???(??????)??????
? ?Custom????
? ?Static IP Address????
? ???(??????)?IP???????
? ????????? ?????test123???? ?RemotePC???????????
??
? ?Advanced?????????
13
Netscreen???
VPN??????????
? Custom ???
? pre-g2-3des-sha ???
? Main??? (?????IP??????)
? ?Return?????????
14
Netscreen???
VPN??????????
VPN??????????????????
15
Netscreen???
Autokey IKE????
? VPNsgt Autokey IKE ???
? ?New?????????
16
Netscreen???
Autokey IKE????
? VPN???? ?????Netscreen RemotePC????
? Compatible ???
? ?OK?????????
? Predefined ??? ??????VPN??????????????
17
Netscreen???
Autokey IKE????
AutoKey IKE ????????????
18
Netscreen???
????????
? Policies ???
? ?New?????????
?Trust??????
? Untrust??????
19
Netscreen???
????????
? Address Book Entry ???
? Local segment ???
? RemotePC ???
? Tunnel ???
? ??????VPN? ???
? ????????????????????????
? ??????????????
? Position at Top????????
? ?OK?????????
20
Netscreen???
????????
????VPN???????????????????????
21
Windows???
???
1.IP?????????????
IP?????????? IPsec VPN (?????)
2.IP???????(???) OUTBOUND (?????) ???????????
10.0.0.1( Netscreen?Untrust??IP????) ??????
test123(Netscreen???????) ???
172.16.0.100(RemotePC?IP????)
?? 192.168.1.0/24(VPN????????????)
5.??
3.????????? IPsec Proposal(?????) ?????????
SHA-1 ????????? 3DES
4.??
22
Windows???
???
IP?????????? IPsec VPN(?????)
6.IP???????(???) INBOUND (?????) ???????????
172.16.0.100( RemotePC?IP????) ??????
test123(Netscreen???????) ???
192.168.1.0/24(VPN????????????)
?? 172.16.0.100(RemotePC?IP????)
9.??
7.????????? IPsec Proposal(?????) ?????????
SHA-1 ????????? 3DES
8.??
10.????????? IP?????????? ( IPsec VPN
)?RemotePC?????
23
Windows???
IP??????????????
? ???????????????????????? ???????????????????
? ????????????IP????????????????????
?IP?????????????????
24
Windows???
IP??????????????
? ?IP???????????? ????????????
?????IPsecVPN????
? ???(N)gt?????????
? ???(N)gt?????????
25
Windows???
IP??????????????
? ???????
? ???(N)gt?????????
? ??????????
26
Windows???
IP??????????????
? ?????
? ?60????
? ?OK?????????
? ?OK?????????
? ?????(V)?????????
27
Windows???
IP???????(???)?
?IP????????????IPsec VPN??????????? ???(D)gt???????
??
? ???(N)gt?????????
28
Windows???
IP???????(???)?
? Netscreen?Untrust??IP???????
? ?????????????????
? ???(N)gt?????????
? ???(N)gt?????????
29
Windows???
IP???????(???)?
? ??????????????????(??????)???????????
?????????????????????test123????
? ?Netscreen?????????????
? ???(N)gt?????????
? ???(A)gt?????????
30
Windows???
IP???????(???)?
? ????????????????OUTBOUND????
- ???(A)gt?????????
? ???(N)gt?????????
31
Windows???
IP???????(???)?
? ??????????????????IP????????
? ???????????IP?????????
? ???(N)gt?????????
? ???(N)gt?????????
? VPN????????????
32
Windows???
IP???????(???)?
? IP???????????????
? ???(N)gt?????????
? ????????????
33
Windows???
IP???????(???)?
? ?OK? ????????
? ?????OUTBOUND????
? ???(N)gt?????????
34
Windows???
??????????
? ????????? ???(A)? ????????
? ???(N)gt?????????
35
Windows???
??????????
? ???????????????????????? ???????? IPsec
Proposal ???????
? ??????????????? ???
? ???(N)gt?????????
? ???(N)gt?????????
36
Windows???
??????????
? ?IPsec????????????????????(D)? ???
? ????????(E)? ???
? ???(N)gt?????????
? ???(N)gt?????????
37
Windows???
??????????
? ?????IPsec Proposal ????
? ????????????
? ???(N)gt?????????
38
Windows???
??????????
? ????????????
? ?????????????
39
Windows???
IP???????(???)?
IP????????????IPsec VPN??????????? ????????????
40
Windows???
IP???????(???)?
? ???IP?????????????????????????RemotePC?IP????(17
2.16.0.100)???
? ???(N)gt?????????
? ???(N)gt?????????
41
Windows???
IP???????(???)?
? ??????????????????(??????)???????????
?????????????????????test123????
? ?Netscreen?????????????
? ?????????????????
? ???(N)gt?????????
? ???(N)gt?????????
42
Windows???
IP???????(???)?
? ???(A)gt?????????
? ????????????????INBOUND????
? ???(A)gt?????????
43
Windows???
IP???????(???)?
? ????????????IP?????????
? ???(N)gt?????????
? ???(N)gt?????????
? VPN?????????????
44
Windows???
IP???????(???)?
? ??????????????????IP????????
? IP???????????????
? ???(N)gt?????????
? ???(N)gt?????????
45
Windows???
??????????
? ????????????
? ???(A)gt?????????
46
Windows???
??????????
? ?????INBOUND????
? ???(N)gt?????????
47
Windows???
??????????
? ?????IPsec Proposal ????
? ???(N)gt?????????
? ????????????
48
Windows???
??????????
? ?OK?????????
49
Windows???
?????????
?????????????IP???????????????????? ?IPsec
VPN???????????????IPsec VPN??????????????????
? ????????????????????????
50
VPN?????
? RemotePC??VPN???????ping???
? IKE???SA?????????????
51
????
??????????!
172.16.0.0/24
192.168.1.0/24
10.0.0.0/24
RemotePC
172.16.0.1
10.0.0.1
192.168.1.1
172.16.0.100
10.0.0.2
