EasyManua.ls Logo

Quantum CHECK POINT SPARK 1800 Series - Page 156

Quantum CHECK POINT SPARK 1800 Series
300 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Advanced Settings
Quantum Spark 1500, 1600 and 1800 Appliance Series R80.20.40 Locally Managed Administration Guide | 156
VPN Site to Site Global
Settings Attribute
Description
Override 'Route all traffic to
remote VPN site'
configuration for
administrator access to the
device
Select this option to prevent administrator access to this
appliance from being routed to the remote site even when the
"Route all traffic to remote VPN site" is configured.
Packet handling errors
tracking
Indicates how to log the VPN packet handling errors: Log, don't
log, or alert.
Perform Tunnel Tests using
an internal IP Address
A Tunnel Test makes sure that the VPN tunnel between peer
VPN Gateways is up.
By default, the test is done by making sure there is a
connection between all the external IP addresses of the peer
VPN Gateways.
You can configure this option to do the tunnel tests using the
internal IP addresses of the Gateways that are part of the local
encryption domain.
You can see the status of the VPN tunnel in the Logs and
Monitoring tab.
Permanent tunnel down
tracking
Indicates how to log when the tunnel goes down: Log, don't log,
or alert.
Permanent tunnel up
tracking
Indicates how to log when the tunnel is up: Log, don't log, or
alert.
RDP packet reply timeout Timeout (in seconds) for an RDP packet reply.
Reply from incoming
interface
When tunnel is initiated from remote site, reply from the same
incoming interface when applicable (IKE and RDP sessions).
Successful key exchange
tracking
Indicates how to log when there is a successful key exchange:
Log, don't log, or alert.
Use cluster IP address for
IKE
Indicates if IKE is performed using cluster IP address (when
applicable).
Use internal IP address for
encrypted connections
from local gateway
Encrypted connections originating from the local gateway will
use an internal interface's IP address as the connection source.
VPN tunnel sharing Indicates under what conditions new tunnels are created: per
host pair, per subnet (industry standard), or a single tunnel per
remote site/gateway. This controls the number of tunnels that
are created.
Table: VPN Site to Site Global Setting Attributes (continued)

Table of Contents

Related product manuals