No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


AR Router Troubleshooting Guide

This Product Documentation provides guidance for maintaining AR Enterprise Router, covering common information collection and fault diagnostic commands, typical fault troubleshooting guide, and troubleshooting.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
How Do I Configure Site-to-Multisite IPSec VPN?

How Do I Configure Site-to-Multisite IPSec VPN?

Site-to-multisite IPSec technology sets up IPSec tunnels between multiple sites (for example, gateways). It is often used when IPSec VPN tunnels need to be set up between the headquarters and multiple branches to secure communication. Figure 29-37 shows the typical networking of site-to-multisite IPSec.
Figure 29-37  Typical networking of site-to-multisite IPSec
Huawei AR series routers support three types of site-to-multisite IPSec:
  • IPSec tunnels that are set up using IPSec policy templates apply to scenarios when the peer device does not have a fixed IP address or there are multiple peer devices.
    • If the peer device does not have a fixed IP address, see Example for Establishing an IPSec Tunnel Through Negotiation Initiated by the Branch User That Dynamically Obtains an IP Address and Example for Configuring the Branch to Access the Internet Through the 3G Interface and Configuring the Headquarters to Establish an IPSec Tunnel with the Branch Using the IPSec Policy Template for the configuration procedure.
    • If there are multiple peer devices, see Example for Establishing an IPSec Tunnel Between the Enterprise Headquarters and Branch Using an IPSec Policy Template and Example for Establishing Multiple IPSec Tunnels Between the Headquarters and Branches Using the IPSec Policy Template for the configuration procedure.
  • L2TP over IPSec applies to scenarios when users in branches or employees on business use VPDN dialup to obtain IP addresses and connect to the headquarters. For the configuration procedure, see How Do I Configure L2TP over IPSec?.
  • IPSec over DSVPN applies to scenarios when gateways in the branches use dynamic IP addresses and communication between the branches needs to be secured. For the configuration procedure, see Example for Configuring DSVPN Protected by IPSec and Example for Configuring a Dual-Hub DSVPN Protected by IPSec.
Updated: 2019-05-10

Document ID: EDOC1000079719

Views: 456683

Downloads: 4321

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Previous Next