Table of Contents
Advertisement
Leave the default setting, 28800, in the Life Time (secs) field. This setting forces the tunnel to
renegotiate and exchange keys every 8 hours.
Advanced
4. Click the Advanced tab. Select any of the following settings you want to apply to your GroupVPN
policy
•
Enable Windows Networking (NetBIOS) broadcast - to allow access to remote network resources
by browsing the Windows® Network Neighborhood.
•
Management via this SA: - If using the VPN SA to manage the SonicWALL, select the management
method, either HTTP or HTTPS.
•
Default LAN Gateway - allows the network administrator to specify the IP address of the default LAN
route for incoming IPSec packets for this SA. Incoming packets are decoded by the SonicWALL and
compared to static routes configured in the SonicWALL. Since packets can have any IP address des-
tination, it is impossible to configure enough static routes to handle the traffic. For packets received
via an IPSec tunnel, the SonicWALL looks up a route for the LAN. If no route is found, the SonicWALL
checks for a Default LAN Gateway. If a Default LAN Gateway is detected, the packet is routed
through the gateway. Otherwise, the packet is dropped.
•
Require Authentication of VPN Clients via XAUTH - requires that all inbound traffic on this SA is
from an authenticated user. Unauthenticated traffic is not allowed on the VPN tunnel. Select a user
group or Everyone from User Group for XAUTH users.
•
Allow Unauthenticated VPN Client Access - allows you to enable unauthenticated VPN client access.
Uncheck Require Authentication of VPN Clients via XAUTH, the Allow Unauthenticated VPN
Client Access menu is activated. Select an Address Object or Address Group from menu of prede-
fined options, or select Create new addess object or Create new address group to create a new
one.
Page 100 SonicWALL SonicOS Standard Administrator's Guide
Advertisement
Table of Contents
