V. VPN (Virtual Private Networking)

This VPN setup example uses two routers, the London and Liverpool routers, as shown in the diagram above. The VPN setup overview article explains how the setup information for the two networks should be collected before configuring the VPN link between the two routers. This table contains the details that will be used to configure the VPN connection between the two routers:

	London	Liverpool
LAN Address	192.168.1.0	10.1.1.0
LAN Subnet Mask	255.255.255.0	255.255.255.0
Router's Address	192.168.1.1	10.1.1.1
Router Admin Password	shilton	keegan
Public IP Address	203.0.113.12	198.51.100.17
VPN Profile Name	Liverpool	London
Call Direction	Incoming	Outgoing
Dial-Out Username	n/a	scouser
Dial-Out Password	n/a	tyne44
Dial-In Username	scouser	n/a
Dial-In Password	tyne44	n/a
Protocols	PPTP only	PPTP only
Pre-Shared Key	n/a	n/a

One important detail to note when setting up the VPN is that DrayTek routers support 11 characters maximum for PPTP LAN to LAN VPN passwords.

Dial In VPN - London Router

This needs to be configured as a Dial-In VPN connection to accept the connection attempt from the Liverpool router. Go to [VPN and Remote Access] – [LAN to LAN] and select the first un-used profile.
On that page, configure the Common Settings like so:

It needs to be Enabled, configured as a Dial-In connection and the Idle Timeout should be set to 0 seconds, so that it does not disconnect when idle.

The next step is to configure the Dial-In Settings of the VPN profile:

1. Set the Allowed Dial-In Type to PPTP

2. Set the Username and Password settings to the username and password to be used for the VPN connection

The IP address details for the VPN need to be configured, those are under TCP/IP Network Settings:

1. The My WAN IP and Remote Gateway IP fields should be left blank

2. Specify the Network Address of the remote network under Remote Network IP and configure the subnet if required

3. Ensure that the Local Network IP details are correct, these are pre-set and should not need changing generally but if the local router has multiple subnets, this could be changed to the subnet that will be used for the VPN tunnel

Click OK on that VPN profile to save and apply it.

Dial-Out VPN – Liverpool Router

This needs to be configured as a Dial-Out VPN connection to initiate the connection with the London router. Go to [VPN and Remote Access] – [LAN to LAN] and select the first un-used profile.
On that page, configure the Common Settings like so:

This needs to be Enabled, configured as a Dial-Out VPN and the Always on tickbox will need to be ticked so that the VPN is always active.

The next step is to configure the Dial-Out Settings of the VPN tunnel:

1. Set the Type of VPN to PPTP

2. Set the Server IP/Host Name for VPN to the address of the VPN server, in this example, London is 203.0.113.12

3. Set the Username and Password settings for the VPN to match the details configured on the other router

The IP address details for the VPN then need to be configured under TCP/IP Network Settings:

1. The My WAN IP and Remote Gateway IP fields should be left blank

2. Specify the Network Address of the remote network under Remote Network IP and configure the subnet if required

3. Ensure that the Local Network IP details are correct, these are pre-set and should not need changing generally but if the local router has multiple subnets, this could be changed to the subnet that will be used for the VPN tunnel

Click OK on that VPN profile to save and apply it.

Once both sides of the VPN have been configured, if all of the details are correct and the routers are able to contact each other without issue, the VPN should establish, this can be checked from [VPN and Remote Access] – [Connection Management], which will show the VPN listed in the status window: