IPCOP to IPCOP VPN via IPSec

This tutorial will describe how to get a Preshared Key (PSK) VPN working between two IPCOPs. Before we begin, make sure that both IPCOPs have different subnets for all interfaces (i.e. there are no subnet overlaps). If there are, please change this before continuing.

1. On your first IPCOP:
2. Goto VPNs – VPNs
3. Under the global settings
   • Make sure ’Local VPN Hostname/IP:’ matches your Red IP address
   • Make sure ’Enabled’ is checked
   • Make sure ’VPN on Green: Enabled’ is checked
     If you want to enable VPN on Blue and/or Orange, enable as required
4. Click ’Save’ if you made any changes in the above steps
5. Click ’Add’ under ’Connection status and control:’
6. Select ’Net-to-Net Virtual Private Network’ and click ’Add’
7. Under ’Connection:’ enter the appropriate information
   • Next to ’Name’, enter a name for the connection
   • Make sure ’Enabled’ is checked
     
     For IPCOP 1.4.11-1.4.13:
     Next to ’IPCOP side:’ select Left for the first box, Right for the second box
     
     For IPCOP 1.4.14-1.4.21:
     Next to ’Host IP Address:’ select RED ()
   • Next to ’Remote Host/IP:’ enter the remote IP
   • Next to ’Remote subnet:’ enter the remote subnet
8. Under ’Authentication:’
   • Select ’Use a Pre-Shared Key:’
   • Next to ’Use a Pre-Shared Key:’ enter a strong password. This password will be used by both IPCOPs
9. Click ’Save’
10. Repeat steps 2 through 9 on the second IPCOP
11. Now your VPN status should say ’Open’
    • If your VPN says ’Closed’, try clicking the refresh button
    • If your VPN remains ’Closed’, goto the logs (Logs – System Logs – IPSec) and see what it says