<< Create an IPsec Policy (3 of 4)

Create Firewall Access Policies >>

 

Example 1: IPsec VPN, Site-to-Site

Create an IPsec Policy (Step 4 of 4)

TMS zl Module A

TMS zl Module B

  1. Configure settings in the Advanced Settings (Optional) section. Select the check boxes for the following:

  2. Enable IP compression

  3. Enable extended sequence number

  4. Enable re-key on sequence number overflow

  5. Enable persistent tunnel

  6. Enable fragment before IPsec

  1. In the Anti-Replay Window Size box, type 640.

  2. Because you selected Tunnel Mode for the IPsec proposal that you selected for this policy, configure these settings in the Tunnel Options section:

  3. Select the Enable Copy DSCP Value from Clear Packet check box

  4. From the DF Bit Handling list, select Copy DF bit from clear packet.

  1. Click Finish. The IPsec policy is displayed in the VPN > IPsec > IPsec Policies window.

  1. Configure settings in the Advanced Settings (Optional) section. Select the check boxes for the following:

  2. Enable IP compression

  3. Enable extended sequence number

  4. Enable re-key on sequence number overflow

  5. Enable persistent tunnel

  6. Enable fragment before IPsec

  1. In the Anti-Replay Window Size box, type 640.

  2. Because you selected Tunnel Mode for the IPsec proposal that you selected for this policy, configure these settings in the Tunnel Options section:

  3. Select the Enable Copy DSCP Value from clear packet check box

  4. From the DF Bit Handling list, select Copy DF bit from clear packet.

  1. Click Finish. The IPsec policy is displayed in the VPN > IPsec > IPsec Policies window.

<< Create an IPsec Policy (3 of 4)

Create Firewall Access Policies >>