CHAPTER 11: Using Virtual Private Networks (VPN)
314 Vcontroller
Defining a VPN Security Policy
This section provides information on defining a VPN secu-
rity policy that creates a VPN connection between two Fire-
box Vclass appliances.
N
OTE
If you want to permit connections that exchange traffic in
both directions, you must create a single bidirectional VPN
policy. You cannot create two mirroring unidirectional VPN
policies, one that permits inbound traffic and one for
outbound traffic.
1 In the Vcontroller window, click Security Policy.
The Security Policy dialog box appears.
2 Select an entry point from the list of policy list, then
click
Insert.
The Insert Security Policy dialog box appears.
3 In the Name and Description fields, type a name and
brief description for the security policy. The
Description field is optional.
4 From the Source drop-down list, select a
preconfigured address group that corresponds to the
remote appliance, or click
New to create a new address
group.
For information on creating an address group, see “Defining an
address group” on page 180.
5 From the Destination drop-down list, select a
preconfigured address group that corresponds to the
local appliance, or click
New to create a new address
group.
For information on creating an address group, see “Defining an
address group” on page 180.
6 From the Service drop-down list, select a predefined
service, or click
New to create a new service.
For information on creating a service, see “Defining a service”
on page 182.
7 From the Incoming Interface drop-down list, select
the incoming interface.
To Next Page
Loading...
