Configuring Static Gateway-To-Gateway Tunnels - Symantec 360R - Security Gateway SGS Administration Manual

Gateway security 300 series

Hide thumbs Also See for 360R - Security Gateway SGS:

Installation manual (66 pages)

Quick start card (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

Table of Contents

Configuring static Gateway-to-Gateway tunnels

On the VPN Policy drop-down list, select a VPN policy to which you want to

bind to the tunnel.

If you have a multi-session PPPoE ISP account, under Local Security

Gateway, in the PPPoE Session drop-down list, select a PPPoE session to

which you want to bind to the tunnel.

If you do not have a multi-session PPPoE ISP account, skip this step.

For model 360 or 360R, on the Local Endpoint drop-down list, select an

endpoint for the tunnel.

On the ID Type drop-down list, select a Phase 1 ID type.

In the Phase 1 ID text box, type the Phase 1 ID.

10 Under Remote Security Gateway, do the following:

In the Gateway Address text box, type the remote gateway address.

■

Optionally, in the ID Type drop-down list, select a Phase 1 ID type.

■

Optionally, in the Phase 1 ID text box, type the Phase 1 ID.

■

In the Pre-Shared Key text box, type a key.

■

In each Remote Subnet IP text box, type the IP address of the

■

destination network.

To create a global tunnel, type 0.0.0.0.

In each Mask text box, type the netmask of the destination network.

■

To create a global tunnel, type 255.0.0.0.

11 Click Add.

Static tunnels do not use any information from the Global IKE Policy (Phase 1

negotiation). You must manually type all of the information necessary to

establish the tunnel. However, you can define a VPN Policy for Phase 2

negotiation.

When defining static tunnels, you must enter an authentication key, as well as

an encryption key (if encryption is used). The keys must match on both sides of

the VPN. In addition, a Security Parameter Index (SPI) is manually typed and

included with every packet transmitted between security gateways. The SPI is a

unique gateway identifier that indicates the set of keys that belongs to each

packet.

Encryption and authentication key lengths

When you define a static tunnel, you must type an encryption key and an

authentication key. Each key has a specific key length based on the method that

Establishing secure VPN connections

Configuring Gateway-to-Gateway tunnels

Table of Contents

Show Quick Links

Quick Links:
Accessing the Security Gateway Management Interface

Hide quick links:

Table of Contents

Troubleshooting

This manual is also suitable for:

320 360

Configuring Static Gateway-To-Gateway Tunnels - Symantec 360R - Security Gateway SGS Administration Manual

Configuring static Gateway-to-Gateway tunnels

Hide quick links:

Troubleshooting

Related Manuals for Symantec 360R - Security Gateway SGS

Related Content for Symantec 360R - Security Gateway SGS

This manual is also suitable for:

Table of Contents