VPN menu features
IPSec Advanced Setup wizard
• An IP address and a valid netmask specified in either the /24 or 255.255.255.0 format
This example uses 3.3.3.3/32 for the custom remote network.
[Conditional, for host-to-host tunnel] Click Add. The pair appears in the Local and Remote Network
c
list
(Figure
289). You can click the delete icon to delete the pair and define a different pair.
Figure 289 IPSec VPN — Phase 2 Settings page
Allow the remainder of the fields to remain at their default settings and click Finish. The tunnel is added
9
to the Tunnel List pane, and the Status column indicates the current status of the tunnel.
Manual keying mode for an IPSec tunnel
Use this procedure as guidance for creating an IPSec tunnel using the manual mode for keying. This mode
of keying is difficult to administer and troubleshoot and is not recommended unless you require access to a
legacy device that does not support automatic keying modes.
From the VPN menu, click IPSec. The IPSec VPN Setup page appears.
1
Click Advanced. The Tunnel Settings page appears
2
Figure 290 IPSec VPN Setup — Tunnel Settings page — Manual keying
Fill in the fields.
Enter a name for the tunnel in Tunnel name field.
a
Leave Enable this tunnel selected.
b
Allow the Local Interface list to default to default gateway interface.
c
McAfee UTM Firewall 4.0.4 Administration Guide
(Figure
290).
281