<< Create IKE Policy (3 of 3)

Create IPsec Proposal >>

 

Example 3: IPsec VPN, Site-to-Site, to a Secure Router 7203dl

Create Named Objects

 

Before you configure this policy, is a good idea to create named objects that contain the addresses and/or services that you will need. For this example, you will need address objects for the remote and local gateways, for the local users, and for the remote network. The objects can have any name that you want.

TMS zl Module

Secure Router 7203dl

  1. Select Firewall > Access Policies > Addresses.

  2. Click Add an Address.

  3. Create a single-entry network address object for VLAN20.

  1. For Name, type VLAN20.

  2. For Type, select Network.

  3. Select Single-entry and type 172.16.20.0/24.

  4. Click Apply.

  1. Create a single-entry network address object for VLAN77.

  1. For Name type VLAN77.

  2. For Type, select Network.

  3. Select Single-entry and type 172.16.77.0/24.

  4. Click Apply.

  1. Create a single-entry IP address object for the local interface.

  1. For Name type localINT.

  2. For Type, select IP.

  3. Select Single-entry and type 172.16.99.99.

  4. Click Apply.

  1. Create a single-entry IP address object for the remote interface.

  1. For Name type remoteINT.

  2. For Type, select IP.

  3. Select Single-entry and type 172.16.77.1.

  4. Click Apply.

  5. Click Close.

  1. On the Public Interface page, select eth 0/2.99 from the Public Interface list. This sets the VPN tunnel endpoint to 172.16.99.1/24.

  2. Click Next.

<< Create IKE Policy (3 of 3)

Create IPsec Proposal >>