Define contact addresses for a single NGFW Engine or a Cluster Virtual IP Address

If NAT is applied to communications between the NGFW Engine and some other component that contacts the NGFW Engine, define the Default contact address for the single NGFW Engine or the Cluster Virtual IP Address (CVI). You can also define location-specific contact addresses.

  For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration.
  2. Right-click an engine element and select Edit <element type>.
  3. In the General pane, select the Location for this element.
  4. Browse to Interfaces in the navigation pane on the left.
  5. In the tree view, expand the tree and double-click the Cluster Virtual IP Address (CVI) or the IP address for which you want to define a contact address.
    On Firewall Clusters, the CVI contact address is used for VPNs and NDI contact addresses are used for other system communications.
  6. In the IP Address Properties dialog box, define the Default contact address. The Default contact address is used by default whenever a component that belongs to another Location connects to this interface.
    • If the interface has a static Default contact address, enter the Default contact address in the Default field.
    • If the interface has a dynamic Default contact address, select Dynamic (next to the Default field) before entering the Default contact address.
  7. If components from some Locations cannot use the Default contact address to connect to the interface, click Exceptions to define Location-specific contact addresses.
  8. Click Add and select the Location.
  9. Click the Contact Address column and enter the IP address that the components in this Location use when they contact the interface or select Dynamic if the interface has a dynamic contact address.
    Note: Elements that belong to the same Location element always use the primary IP address (defined in the element’s properties) when contacting each other. Elements that do not belong to a specific Location belong to the Default Location.
  10. Click OK to close the Exceptions dialog box.
  11. Click OK to close the IP Address Properties dialog box.

Exceptions dialog box

Use this dialog box to define to define Location-specific contact addresses.

Option Definition
Add Adds the element to the Contact Addresses list.
Remove Removes the element from the Contact Addresses list.