Enable the VPN configuration in each NGFW Manager

In each NGFW Manager, enable the VPN configuration in the properties of the NGFW Engine.

Steps

  1. Browse to NGFW > Properties.
  2. Browse to the VPN section, then select VPN Configuration.
  3. To add a row to the VPN Gateways table, click > Add.
  4. In the VPN Gateway cell, add the VPN Broker Gateway element that you created.
    Type part of the name of an element or browse through the drop-down list to select an element.
  5. Under VPN Gateway Settings, add the Gateway Default Settings element.
    Type part of the name of an element or browse through the drop-down list to select an element.
  6. Click Save.
  7. If you have not yet viewed or edited the Access policy, at the top-right corner of the user interface click:
  8. To publish your changes in the NGFW Manager, at the top-right corner of the user interface, click:

Example

Fields marked with an asterisk are mandatory.

Table 1. NGFW Engine Properties - VPN
Option Definition
VPN Configuration When selected, enables the VPN options.
VPN Gateways Shows the configured VPN gateways. Click > Add to add a row to the table.
Gateway The VPN Gateway element that represents the physical gateway device. Type part of the name of an element or browse through the drop-down list to select an element.
VPN Client Settings This option is not yet supported.
SSL VPN Settings This option is not yet supported.
Automatic Certificate Management This option is not yet supported.
Automatic Sites From Routing This option is not yet supported.
VPN Gateway Settings The VPN Gateway Settings element defines performance-related VPN options. Type part of the name of an element or browse through the drop-down list to select an element.

Next steps

You have now finished the configuration steps in the NGFW Manager. Next, create elements for the VPN Broker high availability configuration in the SMC.