Symantec 360R Administration Guide - Page 187

Field descriptions 187 VPN field descriptions Table C-24 Advanced tab field descriptions (Continued) Section IPSec Passthru Settings Exposed Host Field IPSec Type Enable Exposed Host LAN IP Address Description These values are used in ESP IPsec VPNs from some vendors for their software clients for IPsec pass-thru compatability. These settings do not apply to the VPN gateway on the security gateway. Keep this setting at 2 SPI unless instructed by Symantec Technical Support to change it. The None setting lets VPN clients be used in exposed host mode if it is having problems connecting from behind the security gateway. Options include: ■ 1 SPI ADI (Assured Digital) ■ 2 SPI Normal (Cisco Client, Symantec Client VPN, Nortel Extranet, Checkpoint SecureRemote) ■ 2 SPI-C (Cisco VPN Concentrator 30x0 series (formerly Altiga) ■ Others Redcreek Ravlin Client ■ None Use only for debugging clients. Check to enable an exposed host. Activate this feature only when required. This lets one computer on a LAN have unrestricted two-way communication with Internet servers or users. This feature is useful for hosting games or special server or application. IP address of the exposed host. If a host is defined as an exposed host, all traffic not specifically permitted by an inbound rule is automatically redirected to the exposed host. VPN field descriptions Virtual Private Networks (VPNs) let you securely extend the boundaries of your internal network to use insecure communication channels (such as the Internet)