This article provides information on how to create a Route Based LAN to LAN VPN by using preshared secrets in ScreenOS 6.x.
|Untrust IP of Firewall||22.214.171.124 (eth0/0)||126.96.36.199 (eth0/0)|
|Phase 1 Proposal||pre-g2-3des-sha||pre-g2-3des-sha|
|Phase 2 Proposal||g2-esp-3des-sha||g2-esp-3des-sha|
If the tunnel interface is bound to the trust zone (i.e. you specified Zone Trust in step 1.1.2), then no policies are needed (i.e. step 4), since everything is routed. The VPN communication is effectively a trust to trust policy.
If you have performed the following procedure,and need help with troubleshooting, refer to the VPN Configuration & Troubleshooting Guide.