I'm at a tiny consulting firm where I've volunteered to help out with a particularly demanding customer. We hit a stage where we need VPN access to their network. Just 2-3 users from our side and was expecting 'Remote Access' VPN. But customer came back asking for our VPN configuration to setup a site-to-site. None of us are network experts. And the customer is insistent on doing site-to-site. I spent half of today researching what our options are:
Details they need from us are (extrapolating what they sent us, their values marked in orange):
- Setup VPN within our premise and share config details with customer
- We have an Asus RT-N66U. Advertises some VPN capabilities. Is it a good place to start?
- What is a fast/easy way to try implement this?
- All I need is the counterpart to connect to an existing site
- Setup VPN on Amazon AWS and share config details with customer
- This gave me the idea -- http://michaelwasham.com/2013/09/03/connecting-clouds-site-to-site-aws-azure/
- I have some basic experience bringing up and configuring EC2 instances
- This needs to be done fairly soon.
- We need to pick a solution that is not too complex. One that we can maintain ourselves down the line.
- Prefer to try implement it with what we have. I don't think our usage is going to warrant expensive solutions.
Details they need from us are (extrapolating what they sent us, their values marked in orange):
- Gateway Device = they use McAfee Sidewinder Firewall
- Peer IP Address
- Protected Network / Subnet Mask
- Port and Protocol = 3389
- Data Direction = Both
- Pre shared key
- IKE V1 Exchange Type / Mode = Main Mode
- Encapsulation Type = Tunnel
- Phase I DH Group = DH Group 2
- Hash Algorithms = SHA-1
- Phase I Encryption = 3DES
- Phase I Life time (seconds) = 86400 (1440 Minutes)
- Phase II Encryption = 3DES
- Phase II Authentication = SHA1
- Phase II Life time (seconds) = 3600
- Use PFS = NO
Last edited: