Example VPN configuration 2: create an External VPN Gateway element
You need an External VPN Gateway element for this configuration.
Note: This configuration scenario does not explain all settings related to External VPN Gateway elements.
For more details about the product and how to configure features, click Help or press F1.
Steps
- Select Configuration, then browse to SD-WAN.
- Right-click Gateways in the element tree, then select New External VPN Gateway.
- In the Name field, enter a unique name.
-
Click Select for Gateway Profile, then select one of the following profiles:
- For-third party gateways, select the Default (All Capabilities) profile for third-party gateways.
- For Forcepoint NGFW Engines managed by a different Management Server, select the appropriate version-specific profile .
-
On the Endpoints tab, click Add, then define the IP address for the endpoint:
- If the endpoint has a static (manually defined) IP address, enter in it the IPv4 Address field.
- If the endpoint has a dynamic (DHCP-assigned) IP address, select Dynamic..
-
If the external gateway has a dynamic IP address:
- Leave the properties dialog box open.
Next steps
External VPN Gateway Properties dialog box
Use this dialog box to define the properties of an External VPN Gateway element.
Option | Definition |
---|---|
General tab | |
Name | Specifies the unique name of the element. |
Gateway Profile | Shows the selected gateway profile. |
Select | Opens the Select Element dialog box. |
Category | Shows the assigned category. |
Select | Opens the Category Selection dialog box. |
Comment | An optional comment for your own reference. |
Option | Definition |
---|---|
Endpoints tab | |
Search | Opens a search field. Enter a search parameter to locate an endpoint. Clicking X removes the search field. |
New | External Endpoint — Adds an external endpoint IP address. Opens the External Endpoint Properties dialog box. |
Tools |
|
Add | Opens the External Endpoint Properties dialog box. |
Edit | Opens the External Endpoint Properties dialog box for the selected endpoint. |
Remove | Removes the selected endpoint from the list. |
Option | Definition |
---|---|
Sites tab | |
Search | Opens a search field for the selected element list. |
Up (Backspace) | Navigates up one level in the navigation hierarchy. Not available at the top level of the navigation hierarchy. |
Tools |
|
Add | Adds the selected element to the content list. |
Remove | Removes the selected element from the content list. |
Content | Shows the selected elements. |
Option | Definition |
---|---|
Trusted CAs tab | |
Trust All | The gateway accepts any valid CA that is configured, unless restricted in the VPN element. |
Trust only selected | Only selected CAs are accepted. Select the CAs that the Gateway must trust. |