Define a custom Gateway Settings element

The Gateway Settings element defines performance-related VPN options for the Firewalls.

For more details about the product and how to configure features, click Help or press F1.

Steps

  1. Select Configuration, then browse to SD-WAN.
  2. Browse to Other Elements > Profiles > Gateway Settings.
  3. Right-click Gateway Settings branch in the element, then select New Gateway Settings.

Gateway Settings Properties dialog box

Use this dialog box to define the properties of a Gateway element.

Option Definition
Name The name of the element.
Comment

(Optional)

A comment for your own reference.
MOBIKE Return Routability Check
Before SA update The remote peer's IP address is first checked and then, if the IP address is valid, the IP address is updated in the SA.
After SA update The IP address is updated in the SA and then verified.
Negotiation Retry
Retry Limit Number of possible retries when sending a packet to a remote gateway. The negotiation for opening a tunnel is canceled when negotiation has been attempted the number of times specified.
Retry Timer Initial time between retry attempts. This value doubles at each attempt until the value entered for the Retry Timer Maximum is reached. Enter the value in milliseconds.
Retry Timer Maximum Maximum delay between two retry attempts. When the Retry Timer reaches this value, all further retries are done at the interval defined here until the Retry Limit is reached. Enter the value in milliseconds.
Negotiation Expiration Tunnel negotiation is canceled if it is not completed before the expiration time is reached. Enter the value in milliseconds.
Certificate Cache
CRL Validity Defines how long any Certificate Revocation Lists (CRL) are valid. Overrides the validity stated on the received CRLs. Typically, individual CRLs should not be trusted over long periods of time. When the CRL validity time is reached, the Firewall fetches new CRLs from their issuing authorities. Define the value in seconds.