Virtual Private Networking Using IPSec Connections
160
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Figure 103.
Click Refresh Log to view the most recent entries. Click Clear Log to remove all entries.
Manage IPSec VPN Policies
After you have used the VPN Wizard to set up a VPN tunnel, a VPN policy and an IKE policy
are stored in separate policy tables. The name that you selected as the VPN tunnel
connection name during the VPN Wizard setup identifies both the VPN policy and IKE policy.
You can edit existing policies, or manually add new VPN and IKE policies directly in the policy
tables.
Configure IKE Policies
The Internet Key Exchange (IKE) protocol performs negotiations between the two VPN
gateways, and provides automatic management of the keys that are used for IPSec
connections. It is important to remember that:
• An automatically generated VPN policy (Auto Policy) needs to use the IKE negotiation
protocol.
• A manually generated VPN policy (Manual Policy) cannot use the IKE negotiation
protocol.
IKE policies are activated when the following situations occur:
1. The VPN policy selector determines that some traffic matches an existing VPN policy:
• If the VPN policy is of an Auto Policy type, the IKE policy that is specified in the Auto
Policy Parameters section of the Add New VPN Policy screen (see Figure 107 on
page 170) is used to start negotiations with the remote VPN gateway.
To Next Page
Loading...
Need help?
General