Symantec 360R Administration Guide - Page 92

92 Establishing secure VPN connections Configuring Gateway-to-Gateway tunnels succeed. If the key matches, then Security Parameter Index (SPI), authentication, and encryption keys are automatically generated and the tunnel is created. The security gateway usually re-keys (generates a new key) automatically at set intervals to ensure the continued integrity of the key. Configuration tasks for dynamic Gateway-to-Gateway tunnels Table 6-4 summarizes the tasks that are required to configure dynamic Gateway-to-Gateway VPN tunnels. Note: Complete each step in Table 6-4 twice: first for the local security gateway and then for the remote security gateway. Table 6-4 Dynamic Gateway-to-Gateway configuration tasks Task Configure a VPN Policy (Phase 2 IKE negotiation). (Optional) Create a dynamic tunnel. Define IPsec Security Association Parameters. Select VPN Policy. Define the local security gateway. Define the remote security gateway. Repeat the above steps for the remote security gateway. SGMI VPN > VPN Policies VPN > Dynamic Tunnels VPN > Dynamic Tunnels > IPsec Security Association VPN > Dynamic Tunnels > Local Security Gateway VPN > Dynamic Tunnels > Remote Security Gateway To add a dynamic Gateway-to-Gateway tunnel See "Dynamic Tunnels tab field descriptions" on page 189. 1 In the left pane, click VPN. 2 On the Dynamic Tunnels tab, in the Name text box, type a name for the new tunnel. 3 To edit an existing tunnel, from the VPN Tunnel drop-down list, select a VPN tunnel. 4 Check Enable VPN Tunnel.