If NAT is applied to communications between the IPS Cluster or Layer 2 Firewall Cluster and some other component that contacts the cluster, define the Default contact address for the IPS Cluster or a Layer 2 Firewall Cluster. You can also define location-specific contact addresses.
For more details about the product and how to configure features, click Help or press F1.
Steps
-
Select Configuration.
-
Right-click an engine element and select
Edit <element type>.
The Engine Editor opens.
-
In the
General pane, select the
Location for this element.
-
Browse to
Interfaces in the navigation pane on the left.
-
In the tree view, expand the tree and double-click the Cluster Virtual IP Address (CVI) or the IP address for which you want to define a contact address.
On Firewall Clusters, the CVI contact address is used for VPNs and NDI contact addresses are used for other system communications.
-
In the
IP Address Properties dialog box, double-click the Contact Address cell.
-
Enter the
Default contact address at the top of the dialog box.
The Default contact address is used by default whenever a component that belongs to another Location connects to this interface.
-
If components from some Locations cannot use the Default contact address, click
Add
to define Location-specific contact addresses.
-
Click the
Contact Address column and enter the IP address that the components belonging to this Location must use when they contact the interface.
Note: Elements that belong to the same Location element always use the primary IP address (defined in the element’s properties) when contacting each other. Elements that do not belong to a specific Location belong to the Default Location.
-
Click
OK to close the
Exceptions dialog box.
-
Click
OK to close the
IP Address Properties dialog box.