Filter
Top Products
Chapter 4: Using the Web Manager 55
3. From the chain list, click the name of the chain to which you wish to edit a rule. The Rules
screen is displayed.
4. Select the rule you want to edit and click Edit.
5. Modify the rule as needed.
6. Click Save.
IPSec(VPN)
Virtual Private Network (VPN) enables a secured communication between the console server and a
remote network by utilizing a gateway and creating a secured connection between the console
server and the gateway. IPSec is the protocol used to construct the secure tunnel. IPSec provides
encryption and authentication services at the IP level of the protocol stack.
NOTE: IPSec(VPN) is not supported with IPv6.
When Appliance Settings - IPSec(VPN) is selected, the IPSec(VPN) screen is displayed.
Use the Add button to add a VPN connection or click on an existing connection name to edit one
already in the list. Click the Delete button to delete an existing connection. If NAT settings need to
be changed, click the Configure NAT button.
When you click the Add button, the IPSec(VPN) - Add screen is displayed.
The remote gateway is referred to as the remote or right host and the console server is referred to as
the local or left host. If left and right are not directly connected, then you must also specify a
NextHop IP address.
The next hop for the remote or right host is the IP address of the router to which the remote host or
gateway running IPSec sends packets when delivering them to the left host. The next hop for the
left host is the IP address of the router to which the console server sends packets to for delivery to
the right host.
A Fully Qualified Domain Name in the ID fields for both the Local (Left) host and the Remote
(Right) host where the IPSec negotiation takes place should be indicated.
The following table describes the fields and options on the IPSec(VPN) - Add screen. The
information must match exactly on both ends for local and remote.
Table 4.5: Field and Menu Options for Configuring IPSec(VPN)
Field Name Definition
Connection Name Any descriptive name you wish to use to identify this connection such as
MYCOMPANYDOMAIN-VPN.
Authentication Protocol The authentication protocol used, either ESP (Encapsulating Security
Payload) or AH (Authentication Header).