#Configuration Guide# How to Configure IPSec VPN with Sanfor and a 3rd Party Firewall
Last edited by RegiBoy 11 Oct 2022 17:12.# Configuration Guide# How to Configure IPSec VPN with Sangfor and a 3rdParty Firewall
*Product: NGAF*Version:8.0.47*1. Introduction1.1 ScenarioConfigure an IPSec VPN on the NGAF. The other end is a 3rdParty Security Appliance (Firewall). Their respective Local LAN should have aconnection.1. Sangfor NGAF: Local IP: 20.0.0.0/242. 3rd Party FirewallLocal IP: 10.11.22.0/24
Topology:
1.2 Requirements1. Assume that the 3rd PartyFirewall has already set and has connection to the internet.2. Endpoints on the NGAF side must have routeto the NGAF and can access the internet also.
*2. Configuration Guide2.1 NGAF Configuration
Step 1.Configure the interface, zone and attributes:Go to Network> Interfaces
* Set the IP Adress to Static* Input 219.92.2.8/24 as pictured atthe topology
Step 2: Configure the VPN Path, go to Network> IPSec VPN > Basic Settings.
* Set the IP Address of the3rd Party Firewall
Step:3 Configure connections between Local PeersGo to Network > Third-Party Connection > Add New Connection
· LocalIP Address: Input the intranet network segment of thelocal device· PeerIP Address: Input the intranet network segment ofthe peer device
Step 4: IKE Options
Step 5: Other Options
Step 6: After successfully configuration, we can verify the status of the tunnel in the IPSec VPN > Status
*3. Precaution1. Dynamic IP needsto apply for a domain name. thank you for this wonderful information I hope it can be useful to the community :) Thank you for sharing. Thank you for sharing Thank you for sharing ! :handshake Thank you very much for the information ... :handshake I have successfully configured IPSec VPN with Sanfor and 3rd party, Can ping from sangfo client to 3rd party firewall client, but cannot ping vice versa , pls help Hi, how about both side are using dynamic IP? Thank you for sharing
page:
[1]