Cisco

Step 1 - Creating a new branch connection

Log in to the GoodAccess Control Panel, and go to Network > Clouds & Branches.

Click + Add new, enter the Branch name and subnet, and select Gateway.

Choose IPSec Protocol, fill out the Settings configuration form, and click Save.

Step 2 - Creating a new IPSec profile

Log in to your Cisco device, and go to VPN > IPSec Profiles. Click Add to create a new profile.

Give the profile a name and set the configuration as follows:

• Keying mode - Auto

• IKE Version - IKEv2

• Phase I & II Options - Must match configuration from GoodAccess (Step 1)

Click Apply to confirm your settings.

Step 3 - Creating a new site-to-site connection

Go to VPN > Site-to-Site. Click the Add button to create a new connection.

Give the connection a name and set the configuration as follows:

• IPSec Profile - Select the profile you just created (Step 2)

• Remote Endpoint - Select Static IP and enter the IP of your GoodAccess Gateway

Local Group Setup

• Local Identifier Type - Local WAN IP

• Local Identifier - Your public IP

• Local IP Type - Subnet

• IP Address - IP of your network

• Subnet Mask - Your Subnet Mask

Remote Group Setup

• Remote Identifier Type - Remote WAN IP

• Remote Identifier - IP of your GoodAccess Gateway

• Remote IP Type - Subnet

• IP Address - Subnet of your GoodAccess Gateway

• Subnet Mask - Subnet Mask of your GoodAccess Gateway

Don't forget to Apply changes.

You have now successfully connected your device to GoodAccess.

Step 4 (optional) - Enabling DPD

Switch to Advanced Setup and enable DPD (Dead Peer Detection).

Click Apply to confirm your settings.

Step 5 (optional) - Saving the configuration

Click on the Red floppy disk icon to access Configuration Management, and click on Apply.