[RTX1100]--[Aterm WD701CV(ブリッジモード)]---[インターネット]---[ルーター]--[VPNクライアント]
以下はRTX1100のconfig内容
ip route default gateway pp 1
ip route 192.168.10.253 gateway tunnel 1 ←トンネル用ゲートウェイ
ip lan1 address 192.168.10.254/24
ip lan1 proxyarp on
ip lan1 wol relay broadcast
pp select 1
pppoe use lan3
pp auth accept pap chap
pp auth myname USERID PASSWORD ←プロバイダからもらったやつ
ppp lcp mru on 1438
ppp ipcp ipaddress on
ppp ipcp msext on
ppp ccp type none
ip pp mtu 1438
ip pp nat descriptor 1
netvolante-dns hostname host pp server=1 *********.aa0.netvolante.jp ←netvolanteで取得したドメイン名
pp enable 1
tunnel select 1
ipsec tunnel 1
ipsec sa policy 1 1 esp aes-cbc sha-hmac
ipsec ike always-on 1 off
ipsec ike encryption 1 3des-cbc
ipsec ike esp-encapsulation 1 off
ipsec ike group 1 modp768
ipsec ike hash 1 sha
ipsec ike keepalive log 1 on
ipsec ike local address 1 192.168.10.254
ipsec ike payload type 1 3
ipsec ike pfs 1 off
ipsec ike pre-shared-key 1 text hogehoge ←事前共有鍵
ipsec ike remote address 1 any
ipsec ike remote name 1 hoge ←接続相手の名前
ipsec ike xauth request 1 on 1
ipsec auto refresh 1 on
tunnel enable 1
nat descriptor type 1 masquerade
nat descriptor masquerade static 1 1 192.168.10.254 udp 500
nat descriptor masquerade static 1 2 192.168.10.254 esp
ipsec auto refresh on
dns server pp 1
dns private address spoof on
auth user 1 hogeuser hogepassword ←接続時のユーザー名とパスワード
auth user group 1 1
auth user group attribute 1 xauth=on
VPNクライアント側設定(ShrewSoft VPN Client)
