Create a Policy-Based VPN element
The configuration of a Policy-Based VPN element has two stages: first you define some basic properties for the element, then you can add gateways and adjust the tunnels.
For more details about the product and how to configure features, click Help or press F1.
Steps
Next steps
Policy-Based VPN Properties dialog box
Use this dialog box to change the properties of a policy-based VPN.
Option | Definition |
---|---|
Name | The name of the element. |
Default VPN Profile | Specifies the Default VPN Profile for the VPN.
By default, this profile is used for all tunnels, but you can override the selection for individual tunnels. |
Link Usage Profile (Optional) |
To use dynamic link selection for Multi-Link VPNs, select a Link Usage Profile element. When you select a Link Usage Profile element in the properties of a policy-based VPN, route-based VPN tunnel group, or a VPN broker domain, the settings defined in the Link Usage Profile element are applied to all tunnels in the VPN according to their link types. |
DSCP QoS Policy
(Optional) |
Defines how DSCP matching or marking is done for VPN traffic in one of the following ways:
|
Apply NAT to traffic that uses this VPN
(Optional) |
Select this option if you want the NAT rules in the Firewall Policy to apply to traffic that it sends into or receives from the VPN, or if you want to use the NAT Pool feature to translate VPN client connections. This option affects the traffic that is transported inside the tunnels. This option does not affect the tunnel negotiations or the encrypted packets between gateways. These communications are always matched to NAT rules. |
Category (Optional) |
Includes the element in predefined categories. Click Select to select a category. |
Comment (Optional) |
A comment for your own reference. |