-
Configure an access policy to permit IKE messages from the remote TMS zl Module to the local TMS zl Module.
-
Select Firewall > Access Policies > Unicast.
-
Click Add a Policy.
-
For Action, accept the default: Permit Traffic.
-
For From, select EXTERNAL.
-
For To, select SELF.
-
For Service, select isakmp.
-
For Source, select researchGATE.
-
For Destination, localVPNgate.
-
Select the Enable logging on this Policy check box.

|
Because policy logging is processor-intensive, it is not recommended that you enable logging permanently. Use policy logging for troubleshooting and testing only.
|
-
Click Apply.
-
Configure an access policy to allow IKE messages from the local TMS zl Module to the remote TMS zl Module:
-
For Action, accept the default: Permit Traffic.
-
For From, select SELF.
-
For To, select the EXTERNAL.
-
For Service, select isakmp.
-
For Source, select localVPNgate.
-
For Destination, select researchGATE.
-
Click Apply.
-
Create an access policy to permit clients in VLAN_7 to initiate connections with the FTP server:
-
For Action, accept the default, Permit Traffic.
-
For From, select ZONE3.
-
For To, select EXTERNAL.
-
For Service, select ftp.
-
For Source, select VLAN_7.
-
For Destination, select researchFTP.
-
Click Apply.
-
Click Close.
|
-
Configure an access policy to allow IKE messages from the remote TMS zl Module to the local TMS zl Module.
-
Select Firewall > Access Policies > Unicast.
-
Click Add a Policy.
-
For Action, accept the default: Permit Traffic.
-
For From, select EXTERNAL.
-
For To, select SELF.
-
For Service, select isakmp.
-
For Source, select mainGATE.
-
For Destination, localVPNgate.
-
Select the Enable logging on this Policy check box.

|
Because policy logging is processor-intensive, it is not recommended that you enable logging permanently. Use policy logging for troubleshooting and testing only.
|
-
Click Apply.
-
Configure an access policy to allow IKE messages from the local TMS zl Module to the remote TMS zl Module:
-
For Action, accept the default: Permit Traffic.
-
For From, select SELF.
-
For To, select the EXTERNAL.
-
For Service, select isakmp.
-
For Source, select localVPNgate.
-
For Destination, select mainGATE.
-
Click Apply.
-
Create an access policy to permit clients in VLAN_7 to initiate connections with the FTP server:
-
For Action, accept the default, Permit Traffic.
-
For From, select EXTERNAL.
-
For To, select DMZ.
-
For Service, select ftp.
-
For Source, select VLAN_7.
-
For Destination, select FTPserver.
-
Click Apply.
-
Click Close.
|