Configuring VPN Sites
R81.10.X Quantum Spark 1500, 1600, 1800, 1900, 2000 Appliances Locally Managed Administration Guide|346
Locally managed gateways can be part of these site to site communities:
n
VPN mesh community – All gateways are connected to each other, and each gateway
handles its own internet traffic. Encrypted traffic is passed from networks in the
encryption domain of one gateway to the networks in the encryption domain of the
second gateway.
n
VPN star community – One gateway is the center and routes all traffic (encrypted and
internet traffic of the remote peer) to the internet and back to the remote peer. The peer
gateway is a satellite and is configured to route all its traffic through the center.
To configure a gateway as the center:
1. Select the VPN site from the list.
2. Click Edit.
The Edit VPN Site window opens.
3. In the Remote Site tab:
n
For Connection type, enter the IP address which is the public IP of the remote
peer (satellite gateway).
n
In the Encryption domain, select the networks of the satellite gateway that will
participate in the VPN.
4. In the Advanced tab, select Allow traffic to the internet from remote site through this
gateway.
5. Click Apply
This gateway is now designated as the center. Hide NAT is done automatically in the
center gateway.
To Next Page
Loading...
