SonicWALL Internet Security Appliances Network Router User Manual


 
Page 178 SonicWALL Internet Security Appliance Administrator’s Guide
VPN Management Interface
Summary Tab
The Summary tab has four sections: Global VPN Settings, VPN Bandwidth Management, VPN
Policies, and Currently Active VPN tunnels.
Global VPN Settings
The Global VPN Settings section displays the following information:
Unique Firewall Identifier - the default value is the serial number of the SonicWALL appliance.
You can change the Identifier, and use it for configuring VPN tunnels.
Enable VPN - must be selected to allow VPN security associations.
Disable all VPN Windows Networking (NetBIOS) broadcast - also selected. This check box disa-
bles NetBIOS broadcasts for every Security Association configuration.
Enable Fragmented Packet Handling - if the VPN log report shows the log message "Fragmented
IPSec packet dropped", select this feature. Do not select it until the VPN tunnel is established
and in operation.
Enable NAT Traversal - select if a NAT device is located between your VPN endpoints.
See page 177 for more information on SonicWALL NAT Traversal Support.
Keep Alive Interval (seconds) - the default value is 240 seconds (4 minutes). If Enable Keep
Alive is selected on the Advanced Settings window, this is the interval of time between “heart-
beats.”
Enable IKE Dead peer detection - select if you want inactive VPN tunnels to be dropped by the
SonicWALL. Enter the number of seconds between “heartbeats” in the Dead peer detection In-
terval (seconds) field. The default value is 60 seconds. Enter the number of missed heartbeats