Watchguard Firebox FireboxTM System 4.6 User Manual page 136

Watchguard firebox system user guide

Hide thumbs Also See for Firebox FireboxTM System 4.6:

Reference manual (78 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

page of 170

/ 170
Contents
Table of Contents
Bookmarks

Table of Contents

Branch office VPN with IPSec

Removing a gateway

From the Configure Gateways dialog box:

Click the gateway.

Click Remove.

Configuring a tunnel with manual security

A tunnel encapsulates packets between two gateways. It specifies encryption type

and/or authentication method. A tunnel also specifies endpoints. The following

describes how to configure a tunnel using a gateway with the manual key negotiation

type. From the IPSec configuration dialog box:

Click Tunnels.

To add a new tunnel, click Add.

Click a gateway with manual key negotiation type to associate with this tunnel.

Click OK.

Type a tunnel name.

Policy Manager uses the tunnel name as an identifier.

Click the Manual Security tab.

Click Settings.

Click either the ESP or AH security method option. Configure the chosen security

method.

For more information, see "Using Encapsulated Security Protocol (ESP)" on page 126 and

"Using Authenticated Headers (AH)" on page 127.

To use the same settings for both incoming and outgoing traffic, enable the Use

Incoming Settings for Outgoing checkbox.

If you enable this checkbox, you are done with the Security Association Setup dialog box and

can proceed to the next step. If you clear this checkbox, click the Outgoing tab and configure the

security associations for outgoing traffic. The fields have the same rules and parameter ranges

as the Incoming tab.

Click OK.

The Configure Tunnels dialog box appears displaying the newly created tunnel. Repeat the tunnel

creation procedure until you have created all tunnels for this particular gateway.

10 After you add all tunnels for this gateway, click OK.

The Configure Gateways dialog box appears.

11 To configure more tunnels for another gateway, click Tunnels. Select a new

gateway and repeat the tunnel creation procedure for that gateway.

12 When all the tunnels are created, click OK.

Using Encapsulated Security Protocol (ESP)

Type or use the SPI scroll control to identify the Security Parameter Index (SPI).

You must select a number between 257 and 1023.

Use the Encryption drop list to select an encryption method.

Options include: None (no encryption), DES-CBC (56-bit), and 3DES-CBC (168-bit).

Click Key.

Type a passphrase. Click OK.

The passphrase appears in the Encryption Key field. You cannot enter a key here directly.

126

Table of Contents

Related Products for Watchguard Firebox FireboxTM System 4.6

Watchguard 4RE

Watchguard Firebox 4500

Watchguard Firebox FireboxTM System 4.6 User Manual page 136

Related Manuals for Watchguard Firebox FireboxTM System 4.6

Related Products for Watchguard Firebox FireboxTM System 4.6

Table of Contents