Ubiquiti Site-to-Site IPSEC VPN Guide
Ubiquiti Site-to-Site IPSEC VPN Guide
The Ubiquiti Site-to-Site IPSEC VPN Guide is a comprehensive breakdown of everything you need to get a site-to-site secure tunnel running. In almost 30 pages we cover all the necessary steps including configuration of peers, proposals, NAT bypass, firewalls, encryption, and more.
The example topology presented in the guide is one central office and two remote branches. Commands can be copy-pasted directly to routers on the workbench for proof-of-concept before implementing in production environments.
The Ubiquiti Site-to-Site IPSEC VPN Guide is a comprehensive breakdown of everything you need to get a site-to-site secure tunnel running. In almost 30 pages we cover all the necessary steps including configuration of peers, proposals, NAT bypass, firewalls, encryption, and more.
The following tasks are discussed and implemented:
- Configure router timezones
- Configure Network Time Protocol (NTP) time synchronization
- Create firewall address groups for trusted IPSEC peers
- Open inbound connections for IPSEC peers
- Create ESP proposals
- Configure ESP security
- Create IKE proposals
- Configure IPSEC peers
- Configure IPSEC peer authentication
- Specify local and remote subnets
- Bypass NAT for IPSEC traffic
- Trigger IPSEC tunnels with ”interesting” traffic
- Verify tunnel operation
The example topology presented in the guide is one central office and two remote branches. Commands can be copy-pasted directly to routers on the workbench for proof-of-concept before implementing in production environments.