Virtual Private Networking Using IPSec Connections
286
ProSecure Unified Threat Management (UTM) Appliance
Note: The IKE policy settings that are explained in the following table are
specifically for a Mode Config configuration. Table 64 on page 266
explains the general IKE policy settings.
Table 70. IKE policy settings for a Mode Config configuration
Setting Description
Mode Config Record
Do you want to use
Mode Config Record?
Select the Yes radio button.
Note: Because Mode Config functions only in Aggressive mode, selecting the Yes
radio button sets the tunnel exchange mode to Aggressive mode. Mode Config
also requires that both the local and remote endpoints are defined by their FQDNs.
Select Mode
Config Record
From the drop-down list, select the Mode Config record that
you created in step 4 on page 284. This example uses NA
Sales.
General
Policy Name A descriptive name of the IKE policy for identification and management purposes.
This example uses ModeConfigNA_Sales.
Note: The name is not supplied to the remote VPN endpoint.
Direction / Type Responder is automatically selected when you select the Mode Config record in
the Mode Config Record section of the screen. This ensures that the UTM
responds to an IKE request from the remote endpoint but does not initiate one.
Exchange Mode Aggressive mode is automatically selected when you select the Mode Config
record in the Mode Config Record section of the screen.
Local
Select Local Gateway
(multiple WAN port
models only)
Select a WAN interface from the drop-down list to specify the WAN interface for the
local gateway.
Identifier Type From the drop-down list, select FQDN.
Note: Mode Config requires that the UTM (that is, the local endpoint) is defined by
an FQDN.
Identifier Enter an FQDN for the UTM. This example uses router.com.
To Next Page
Loading...
Need help?
General
