Table of Contents
Advertisement
5. Click the Network tab.
6. Select a local network from Choose local network from list if a specific local network can access
the VPN tunnel. If traffic can originate from any local network, select Any Address. Select Use this
VPN Tunnel as default route for all Internet traffic if all remote VPN connections access the Internet
through this SA. You can only configure one SA to use this setting. Alternatively, select Choose
Destination network from list, and select the address object or group. Click Proposals.
7. Click on the Proposals tab.
8. Define an Incoming SPI and an Outgoing SPI. The SPIs are hexadecimal (0123456789abcedf) and
can range from 3 to 8 characters in length.
Alert!
Each Security Association must have unique SPIs; no two Security Associations can share the same
SPIs. However, each Security Association Incoming SPI can be the same as the Outgoing SPI.
9. The default values for Protocol, Phase 2 Encryption, and Phase 2 Authentication are acceptable
for most VPN SA configurations.
Note:
The values for Protocol, Phase 2 Encryption, and Phase 2 Authentication must match the values
on the remote SonicWALL.
10. Enter a 16 character hexadecimal encryption key in the Encryption Key field or use the default value.
This encryption key is used to configure the remote SonicWALL encryption key, therefore, write it
down to use when configuring the SonicWALL.
Page 110 SonicWALL SonicOS Standard Administrator's Guide
Advertisement
Table of Contents
