This article will help you establish a site-to-site IPsec connection between Timus Networks and UniFi.
IPsec tunnel between Timus - UniFi: UniFi Configuration for Timus:
Go to VPN -> Site-to-Site VPN (IPsec).
Go to Static Routing page.
- Name: Timus_Static_Routing
- Enabled: Enable this route
- Type: Static
- Network: 192.168.249.0/24 is for WireGuard or 192.168.255.0/24 is for OpenVPN subnets on Timus by default. If you have changed the subnets, please enter either WireGuard or OpenVPN subnets here.
- Distance: 10
- Static Route Type: You can either select your LAN interface or select Next Hop as the subnet belonging to your LAN like 192.168.10.0/24 here.
Hit Save after completing the configuration on UniFi - Static routing page.
Timus Configuration for UniFi:
Go to the Timus Manager -> Sites -> Create New Please note that you need to have a gateway to be able to create an IPsec tunnel(Connector)
- After clicking on Create New, you need to select Connector on top and enter an IPsec tunnel name, which is required.
Parameters:
- Note- you now have the option to select "Create firewalls rules automatically"
Miscellaneous:
- To enable Dead Peer Detection(DPD) is highly recommended. Therefore, once the IPsec tunnel gets down for some reasons, it will automatically connect back and it will be Established/Online again.
- After configuring the Phase 1 IKE configuration of Timus, you need to hit Save.
- After saving, please extend the gateway by clicking on the arrow, and click on the 3 dots at the end of the row. After that, click on View.
- After clicking on View, you will be the page where you can add/edit the Phase 2 configuration, click on Create New Tunnel to create a Phase 2 configuration for your IPsec.
Phase 2 configuration of Timus:
- Note- you now have the option to select "Create firewalls rules automatically"
- After configuring the Phase 2, click on Save.
0 comments
Please sign in to leave a comment.