Using Tunnel Switching
Firebox Vclass User Guide 323
10 Select the AH checkbox.
11 In the Local SPI (Security Parameter Index) field, Type
a unique number between 256 and 65535.
This SPI entry is used to identify this manual key in the local
Firebox Vclass appliance.
12 In the Peer SPI field, type the unique number of the
remote appliance.
N
OTE
If both ESP and AH are activated for this manual key, the
local SPI for both ESP and AH must share the same unique
number. Similarly, the peer SPI of both ESP and AH must
also share a unique number.
13 From the Authentication Algorithm drop-down list,
select the authentication algorithm.
14 Click either String or Hex to specify the type of key
text to be used.
15 In the Key and Confirm Key fields, type and confirm
the key.
Using Tunnel Switching
Maintaining and managing VPN tunnels can be compli-
cated and labor-intensive. This is particularly true when
using a fully meshed topology in which a VPN tunnel is cre-
ated between all sites. As the number of VPN sites
increases, managing and maintaining tunnels among all
the sites becomes much more difficult. The situation gets
even more complicated after remote users establish their
own VPN connections to the corporate network and to
branch offices. The following figure depicts a fully meshed
configuration.
To Next Page
Loading...
