The official DrayTek online store for Greece & Cyprus

+30 210 67 77 007
Login
B2b
Pr. Registration
Wishlist
0My basket
GR EN
search

HOME Information DrayTek Blog ACS How to set up VPN tunnels between registered Vigor Routers by SD-

How to set up VPN tunnels between registered Vigor Routers by SD-

SD-WAN (software-defined networking WAN) is a key feature of ACS3, which allows a network administrator to manage any combinations among internet services (Ethernet, LTEs and VPNs…). By this feature, we are able to establish VPN tunnels in a snap. This article will demonstrate how to set up VPN tunnels on ACS 3.
 
About how to enable SD-WAN network, please refer the article here.
 
Why set up VPN tunnels via ACS 3 SD-WAN?
Set up massive VPN tunnels within a few clicks.
Each VPN profile will be specified an unique Pre-shared Key automatically.
We provide the flexibility to create your VPN topology with different requirements:
Type 1: Hub and Spoke
Type 2: Full Mesh
 
photo1
 
How to go to VPN (SD-WAN) Page?
1. On ACS3 Dashboard,
a. Tap the Network box which is located at the top
b. Click the network group
 
photo2
 
2. Go to Monitoring >> VPN (SD-WAN).
 
photo3
 
Anchor points for VPN tunnel setup: Hub and Spoke, Full Mesh
 
 
Setup VPN tunnels for Hub and Spoke type
 
On ACS 3 site
 
1. On VPN page, tap Add VPN Tunnel(s)
 
photo4
 
2. On VPN Setup page, select the device(s) to be the Hub(s).
 
photo5
 
3. After define the Hub(s), tap Show Details and
a. Click the cancel icon to delete the devices which are unnecessary to be spokes
b. Select the WAN interface
c. Select VPN type (In this example, we use IPsec type to establish VPN tunnels)
d. (Optional) Enable Customize IKE Pre-Shared Key to create a Pre-Shared Key manually
e. Select IPsec security method
f. Click Save and set to CPEs
 
photo6
 
4. After connections creating, the Tunnel List will demonstrate the status of all the VPN tunnels.
 
photo7
 
photo8
   
On Hub site (Dial-in site)
 
photo9
 
On Spoke site (Dial-out side)
 
photo10
 
Setup VPN tunnels for Full Mesh type
 
On ACS 3 site
 
1. On VPN Setup page,
 
a. Click Full Mesh
b. Click the cancel icon to delete the devices which are unnecessary to be Full Mesh devices
c. Select the WAN interface
d. Select VPN type (In this example, we use IPsec type to establish VPN tunnels)
e. (Optional) Enable Customize IKE Pre-Shared Key to create a Pre-Shared Key manually
f. Select IPsec security method
g. Click Save and set to CPEs
 
photo11
 
2. After connections creating, the Tunnel List will demonstrate the status of all the VPN tunnels.
 
photo12
 
On each router site
 
photo13
 
Product added to cart!