-
Configure settings in the Advanced Settings (Optional) section. Select the check boxes for the following:
-
Enable IP compression
-
Enable extended sequence number
-
Enable re-key on sequence number overflow
-
Enable persistent tunnel
-
Enable fragment before IPsec
-
In the Anti-Replay Window Size box, type 640.
-
Because you selected Tunnel Mode for the IPsec proposal that you selected for this policy, configure these settings in the Tunnel Options section:
-
Select the Enable Copy DSCP Value from Clear Packet check box
-
From the DF Bit Handling list, select Copy DF bit from clear packet.
-
Click Finish. The IPsec policy is displayed in the VPN > IPsec > IPsec Policies window.
|
-
Configure settings in the Advanced Settings (Optional) section. Select the check boxes for the following:
-
Enable IP compression
-
Enable extended sequence number
-
Enable re-key on sequence number overflow
-
Enable persistent tunnel
-
Enable fragment before IPsec
-
In the Anti-Replay Window Size box, type 640.
-
Because you selected Tunnel Mode for the IPsec proposal that you selected for this policy, configure these settings in the Tunnel Options section:
-
Select the Enable Copy DSCP Value from clear packet check box
-
From the DF Bit Handling list, select Copy DF bit from clear packet.
-
Click Finish. The IPsec policy is displayed in the VPN > IPsec > IPsec Policies window.
|