If employees want to access their employer’s data and applications from their home office or on the road, this can lead to problems that affect security in particular. Using a Virtual Private Network (VPN) it is possible to establish a secure connection between home and company networks.
This enables small offices or external users to securely access devices and services in the corporate network – just as if they were on site with their computer. This is made possible by a VPN gateway. Setting up a VPN is quite simple for users, especially if they choose a Fritz!Box 7590 with Easy Connect function.
Suitable for: Beginners with basic knowledge
Time required: approx. 15 minutes
Budget: approx. 230 euro
What you need: 1 Fritz!Box 7590
What you also need: Tablet or PC for setup, Internet connection
Before you start – These are the advantages of a Virtual Private Network
In times of cybercrime it is more important than ever to protect sensitive data. Data traffic over a VPN connection is completely encrypted so that no data can be viewed by third parties. Nor is it possible for the Internet provider or company employee to view Internet activities or the use of services or the whereabouts of users, because the IP address remains anonymous.
And what’s more, all data that goes from the user’s computer into the secure VPN tunnel, such as passwords or the address of the company intranet, cannot be viewed from the outside. A VPN connection is therefore also ideal for surfing in an open WLAN.
In addition, users can securely access the home network via VPN with a smartphone.
Background information – VPN in the Fritz!Box
In principle, there are different technical approaches to realize a VPN. The most common are IPSec and SSL. IPSec stands for Internet Protocol Security and is intended to make communication over IP networks secure. It establishes point-to-point connections for this purpose.
Administrators use this technology for permanent connections. Here, a secure tunnel is set up via independent client software, which is cheaper than a classic leased line.
Another advantage over SSL is that the entire network is available for authorized users, so users do not have to wait for the admins to be activated for each application. VPN in the Fritz! box is based on the IPSec standard. Up to eight VPN connections can be set up and, if desired, used simultaneously.
How it works
To access the company network via the Fritz!Box 7590, it functions as a VPN client that connects to a VPN server.
The administrator of the VPN server in the company must first set up a VPN client connection for the Fritz!Box. To do this, he uses IPSec algorithms, which he then makes available to you as the user. This allows you to set up your VPN connection in the Fritz!Box.
This data includes the Internet address of the VPN server (domain name), the IP network of the company VPN, the VPN user name of the VPN connection in the VPN server and the preshared key of the VPN connection in the VPN server.
The Fritz!Box VPN-ready is just a few steps away
To set up a VPN connection in your Fritz!Box, simply log into the user interface of the Fritz!Box and proceed as follows:
1. Click in the mask on the left in the menu under “Internet” on “Shares” and select the tab “VPN”.
2. Under the “VPN” tab, click on “Add VPN connection” in the lower right corner.
3. Go to “Connect this Fritz!box to a company VPN” and click on “Next” in the lower right corner.
4. Enter the data you received from your admin in the fields provided:
– The entry field “VPN user name” (also called Key-ID) contains the Key-ID of the VPN connection set up in the VPN server for the Fritz!Box (example: Max Mustermann).
– The entry field “VPN password” (also called Preshared Key) contains the password for the VPN connection (example: Zjxp3j965lhr).
– Your admin will tell you if the VPN XAUTH is using – this is an extension of the IPSec network protocol. If this is the case, you will also receive a user name and password. First activate the “XAUTH” option and enter the required data in the respective input fields.
– In the “Internet address” input field, enter the domain name or the fixed IP address of the VPN server (example: sec.meinedomain.de or 126.96.36.199).
– The entry field “Remote network” is intended for the IP network of the company VPN (example: 172.16.0.0).
– The entry field “Subnet mask” contains the subnet mask belonging to the IP network of the company VPN (example: 255.255.0.0).
5. Then activate the option “Keep VPN connection permanently” and confirm all entries with “OK”.
Thanks to the “Keep VPN connection permanently” option, the Fritz!box establishes the VPN connection permanently and re-establishes it automatically in the event of a disconnection by the VPN server.
If this option is not activated, the Fritz!Box automatically establishes the VPN connection when the company network is accessed and disconnects it again after an hour of inactivity.
Setting up a secure VPN connection to a company network is easy in just a few steps – especially with a Fritz! box, which simplifies the installation considerably. So nothing stands in the way of efficient work from the home office!
Cover picture/pictures: reichelt