Site To Site (Gateway-Gateway) - Stormshield SN series Configuration Manual

Edit
Last modification This icon allows finding out the date and time of the last modification. The time displayed is
Disable policy

Site to site (Gateway-Gateway)

A video from Stormshield Network's WebTV on YouTube will guide you step by step in the
configuration of a secure connection between your sites. Click on this link to access the video:
​ S ecure connections between sites (IPsec VPN by Pre-shared
This tab will allow creating a VPN tunnel between two network devices that support IPSec.
This procedure is also called: Gateway to Gateway VPN tunnel or Gateway to Gateway tunnel
The Add button will be covered in the following chapter.
Search
Delete
Move up
Move down
Cut
Copy
Paste
Add
In order to configure the tunnel, select the VPN policy in which you wish to set it up. The IPSec
VPN policy wizard will guide you through the configuration.
Site to site tunnel
Here, you will define each of the endpoints for your tunnel as well as for your peer.
Peer selection
Create an IKEv1
peer
Page 163/448
This function allows performing 3 operations on profiles:
Rename: by clicking on this option, a window comprising two fields will appear. It will
l
allow you to modify the name and add comments. Once the operation has been
performed, click on "Update". This operation can also be cancelled.
Reinitialize: Deletes all changes made to the profile. The configuration will therefore be
l
lost.
Copy to: This option allows copying a profile to another, with all the information from the
l
copied profile transmitted to the receiving profile. It will also have the same name.
the appliance's time instead of your workstation's time.
This button allows immediately deactivating the selected IPSec policy.
Searches will be performed on the name of the object and its various properties, unless you
have specified in the preferences of the application that you would like to restrict this
search to object names only.
Select the IPSec VPN tunnel to be removed from the table and click on this button.
Places the selected line before the line just above it.
Places the selected line after the line just below it.
Cut the selected line in order to paste it.
Copy the selected line in order to duplicate it.
Duplicate the selected line after having copied it.
This is the object that corresponds to the public IP address of the tunnel endpoint, or of the
remote VPN peer.
The drop-down list displays "None" by default. You can create peers in the following option
or select an existing peer from the list.
Define the parameters for your peer. Several steps are necessary:
Selecting the gateway:
Remote gateway: select the object corresponding to the IP address of the tunnel endpoint
from the drop-down list.
SNS - USER CONFIGURATION MANUAL V.3
keys).
sns-en-user_configuration_manual-v3 - Copyright © Stormshield 2016
IPSEC VPN