Getting started with example VPN configurations

You can follow these examples when you set up your own VPNs and add other features after the basic scenario is configured and working.

Note: VPNs are not supported on Layer 2 Firewalls or on layer 2 physical interfaces on Firewalls.
The following example configurations are explained:
  • Example 1 shows a site-to-site VPN between two or more NGFW Engines that are managed through the same Management Server. A default set of VPN settings is used to simplify the configuration.
  • Example 2 shows a site-to-site VPN between an NGFW Engine and an IPsec-compatible VPN gateway that is not managed through the same Management Server. A customized set of VPN settings is created. Customized settings are typically mandatory for this configuration. A pre-shared key is used for authentication.
  • Example 3 shows a mobile VPN between an NGFW Engine and the Forcepoint VPN Client installed on individual computers. A default set of VPN settings is used to simplify the configuration.
  • Example 4 shows a site-to-site VPN in which several remote gateway connect to a hub gateway. The hub gateway forwards connections to the other remote gateways as necessary. A default set of VPN settings is used to simplify the configuration.