IP Securitas Os X – CISCO RV220W VPN How-to – part2

This is part 2 of How-to setup an IPSec VPN from an Os X Client (or Server)

IP Securitas Connections settings

Download and install IP Securitas.

Make a new connections. Name it as you want. here will name it CISCO for the test

General tab

  • Remote IPSec Device: enter you WAN IP Address
  • Local Side Endpoint mode : Choose Host, and you can leave it blank.
    Note if you have trouble (when you are connected, you could manually add one IP here like your current LAN IP, the one from the computer you configuring IPSecuritas)

ciscoRV220W_vpn-generic_03

  • Remote Side endpoint : choose Network, and enter remote LAN range (here 192.168.1.0/24)

Important note : this is basic for VPN settings but if you don’t know it, you can be mad. you current local LAN range MUST be different from the remote LAN range IPs. meaning your computer must be on a range like 192.168.0.x/24, or 192.168.2.x/24 and above. If both are on the same subnet range it will simply fail.

Phase 1 tab

  • here you’ll fill with IKE settings.

ciscoRV220W_vpn-generic_04

Phase 2 tab

  • here you’ll fill with VPN policy settings

ciscoRV220W_vpn-generic_05

ID tab

the tricky part with local vs remote IDs

  • Local Identifier : ciscoremote.com
  • Remote Identifier : ciscolocal.com

Note : you reverse IDs. this is simple logic as you now are the remote part considering the Netgear.

  • Authentication Method : Pre-shared Key, and fill in “secretkey” (the preshared key you’ve entered in the IKE settings).

ciscoRV220W_vpn-generic_06

DNS tab

While not mandatory, I always prefer to fill in DNS settings for Domains and Servers Addresses.

So fill in accordingly to your Remote LAN settings if you chose so.
Note that if, like me the DHCP (and DNS) are not handled by the Netgear routeur but rather by your (Mac Os X ) Server, then you definitly want to fill in the info here.

ciscoRV220W_vpn-generic_07

Options tab

Well here settings may differ and you can then do with trial and errors and check at the IP Securitas logs. Anyway here are the settings working for me with this Netgear.

I also choosed to Enable NAT-Translation.

ciscoRV220W_vpn-generic_08

Save your config.

You should now be ready to connect and enjoy your VPN connection.

You also should be able to do Command-K in the finder, choose your server dns name and access your shares.

In my case, once all is ok, it takes less that 3-5 seconds to get a green dot (VPN connection up and running).

Final notes :

  • In case of trouble the IP Securitas log is quite helpfull.
  • Those settings are based on older settings I made with another Netgear FVS338G The routeur just died as did a previous FVS124G, so we choose this CISCO. So far so good.
Olivier
About

Product and graphic designer turned to be a Mac SysAdmin.

Posted in Admin, Mac, tips tricks scripts Tagged with: , , , , , , , , ,
0 comments on “IP Securitas Os X – CISCO RV220W VPN How-to – part2
1 Pings/Trackbacks for "IP Securitas Os X – CISCO RV220W VPN How-to – part2"
  1. […] 1. Connecting to the Cisco and VPN & IKE policy Setup 2. Configure IP Securitas […]

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>