Reference Manual for the ProSafe Wireless 802.11g VPN Firewall Model FVG318
Advanced Virtual Private Networking 7-27
v1.0, October 2005
Now, the traffic from devices within the range of the LAN subnet addresses on FVG318 A and
Gateway B will be authenticated using the certificates rather than via a shared key.
8. Set up Certificate Revocation List (CRL) checking.
a. Get a copy of the CRL from the CA and save it as a text file.
b. From the main menu VPN section, click the CRL link.
c. Click Add to add a CRL.
d. Click Browse to locate the CRL file.
e. Click Upload.
Now expired or revoked certificates will not be allowed to use the VPN tunnels managed by
IKE policies which use this CA.
Note: The procedure for obtaining a CRL differs from a CA like Verisign and a
CA such as a Windows 2000 certificate server, which an organization
operates for providing certificates for its members. Follow the procedures
of your CA.
Note: You must update the CRLs regularly in order to maintain the validity of the
certificate-based VPN policies.
To Next Page
Loading...
