EasyManua.ls Logo

Rohde & Schwarz GP-E - Certificate Management

Rohde & Schwarz GP-E
233 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
User Interface
R&S
®
GP-E/GP-S
121User Manual v16.2.1 ─ 01
Field Description
"Remote Certificate" From the drop-down list, select the VPN certificate of the remote site.
"Remote Host" Enter the host name or IP address under which the remote gateprotect Firewall
is reachable from the Internet in its access zone.
"Termination Zone" From the drop-down list, select the zone in which the data being sent through
the VPN tunnel and afterwards decrypted should be accessible.
"Zones to Announce" From the drop-down list, select the zones that should be available to the remote
site.
Once an OpenVPN S2S connection has been successfully configured on both sites,
you can edit it to specify the subnets that should be made available over this connec-
tion:
Field Description
"Incoming Subnets" Adjust the list of subnets that should be made available over this connection by
selecting the radio button corresponding to the desired category:
"Ignore" - These subnets are not available over this connection
"Accept" - These subnets are connected
"Forward" - These subnets are forwarded from one remote system to
another (as a relay)
Important: If you operate two gateprotect Firewall devices, subnets can only be
ignored or accepted. If three or more devices are run, subnets can be ignored,
accepted or forwarded.
Note: It may take several minutes until all accepted or forwarded subnets are
visible for the VPN peers.
Click "Subnet " to refresh the list of subnets.
The buttons at the bottom right of the editor panel depend on whether you add a new
OpenVPN S2S connection or edit an existing connection. For a newly configured con-
nection, click "Create" to add the connection to the list of available OpenVPN S2S con-
nections or "Cancel" to discard your changes. To edit an existing connection, click
"Close" as long as no changes have been made, "Save" to store the reconfigured con-
nection or "Reset" to discard your changes.
Click "
Activate" in the toolbar at the top of the desktop to apply your configuration
changes.
For detailed instructions, see Chapter 4.12.4, "Setting Up a Site-to-Site VPN via
OpenVPN", on page 192.
3.4.8 Certificate Management
The " Cert. Management" settings allow you to control the certificates used by the
gateprotect Firewall web interface, the built-in SSL proxy and the OpenVPN server, to
create templates to ease the creation of certificates and to enable OCSP/CRL ser-
vices.
Menu Reference

Table of Contents