EasyManua.ls Logo

Quantum SPARK 1500 - Page 341

Quantum SPARK 1500
461 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Configuring VPN Sites
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|341
n
High Availability or Load Sharing - When you select this option, you must
configure a probing method on the Advanced tab. The probing method monitors
which IP addresses to use for VPN: ongoing or one at a time.
Load Sharing mode - Configure a list of backup IP addresses to distribute data.
High Availability mode:
l
Configure a list of backup IPaddresses in case of failure.
l
Primary IP address - Configure one of the existing IP addresses as the
primary, or add an IP address and set it as the primary.
The status of VPN sites whose hosts or IP addresses are in High Availability or
Load Sharing mode are displayed in the Responsiveness column in the table. For
example, 0 of 2 is responsive.
n
Only remote site initiates VPN - Connections can only be initiated from the remote
site to this appliance. For example, when the remote site is hidden behind a NAT
device. In this scenario, this appliance only responds to the tunnel initiation
requests. This requires a secure method of remote site authentication and
identification.
4. Select an authentication method. This must match the authentication you used to
configure this appliance as the other gateway's remote site.
n
Preshared secret - If you select this option, enter the same password as
configured in the remote gateway and confirm it.
Note - You cannot use these characters in a password or shared secret: {
} [ ] ` ~ | ‘ " \ (maximum number of characters: 255)
n
Certificate - The gateway uses its own certificate to authenticate itself. For more
information, see VPN > Internal Certificate.
5.
Select the Remote Site Encryption Domain.
Configure the conditions to encrypt traffic and send to this remote site.
n
Define remote network topology manually - Traffic is encrypted when the
destination is included in the list of network objects. Click Select to select the
networks that represent the remote site's internal networks. Click New to create
network objects.

Table of Contents

Related product manuals