Disable or enable automatic VPN Site management

Automatic Site management is active by default in the VPN settings for NGFW Engines.

If you prefer not to update the information automatically for any interface, you can disable automatic site management.

When you disable automatic site management, the automatic Site is removed. There must be another Site configured for the gateway for it to be valid in a policy-based VPN.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Right-click a Firewall element, then select Edit <element type>.
  2. Browse to VPN > Sites.
  3. Deselect or select the Add and Update Addresses Based on Routing option.
    • When the option is not selected, you must manually define the addresses that you want to be routable through the VPN.
    • When the option is selected, the Site content updates automatically according to changes made in the routing configuration for the firewall (for interfaces that are not disabled).
  4. Click Save.

Engine Editor > VPN > Sites

Use this branch to select the protected IP addresses that are behind the gateway.

Option Definition
Add and update IP addresses based on routing When selected, the site content updates automatically according to changes made in the routing configuration for the NGFW Engine (for interfaces that are not disabled).
Note: When the option is not selected, you must manually define the addresses that you want to be routable through the VPN.
Search Opens a search field for the selected list.
Up Navigates up one level in the navigation hierarchy. Not available at the top level of the navigation hierarchy.
Tools
  • New — Creates an element of the specified type.
  • Show Deleted Elements — Shows elements that have been moved to the Trash.
Left pane Shows elements that you can add to the site definition.
Add Adds the selected element to the site content.
Remove Removes the selected element from the site content.
Search Opens a search field for the selected element list.
Up Navigates up one level in the navigation hierarchy. Not available at the top level of the navigation hierarchy.
New Creates an element of the specified type.
Tools
  • Expand All — Expands all levels of the status tree.
  • Collapse All — Collapses all levels of the status tree.
  • Refresh View — Updates the view.
Right pane Allows you to change the IP addresses that are included in the site definition.