Cisco SA520-K9 Administration Guide - Page 138
Configuring VPN, Local WAN's IP Address or Internet Name
UPC - 882658266744
View all Cisco SA520-K9 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 138 highlights
Configuring VPN Configuring a Site-to-Site VPN Tunnel 7 • What is the pre-shared Key?: Enter the desired value, which the peer device must provide to establish a connection. The length of the pre-shared key is between 8 characters and 49 characters and must be entered exactly the same here and on the remote VPN gateway or client. NOTE When the security appliance at the other site is configured, the same pre-shared key has to be entered on that device. Do not use the doublequote character (") in the pre-shared key. • Local WAN Interface: Choose the WAN interface that you want to use for this VPN tunnel: Dedicated WAN or Optional WAN. STEP 4 In the Remote & Local WAN Addresses area, enter the following information about the remote server and the local server: • Remote Gateway Type: Choose IP Address if you want to enter the IP address of the remote device, or choose Fully Qualified Domain Name (FQDN) if you want to enter the domain name of the remote network, such as vpn.company.com. Then enter that address or name in the Remote WAN's IP Address or Internet Name field. For the example illustrated in Figure 5, the remote site, Site B, has a public IP address of 209.165.200.236. You would choose IP Address for the type, and you would enter 209.165.200.236 in the IP Address or Internet Name field. • Local Gateway Type: This field can be left blank if you are not using a different FQDN or IP address than the one specified in the WAN port's configuration. Choose IP Address if you want to enter an IP address, or choose Fully Qualified Domain Name (FQDN) if you want to enter a domain name, such as vpn.company.com. Then enter that address or name in the Local WAN's IP Address or Internet Name field. For the example illustrated in Figure 5, the local site, Site A, has a public IP address of 209.165.200.226. You would choose IP Address for the type, and you would enter 209.165.200.226 in the IP Address or Internet Name field. STEP 5 In the Secure Connection Remote Accessibility area, enter the following information about the LAN at the remote site: • Remote LAN IP Address: Enter the IP address of the remote LAN. For the example illustrated in Figure 5, the remote site, Site B, has a LAN IP address of 10.20.20.0. • Remote LAN Subnet Mask: Enter the associated subnet mask for the above entered subnet IP Address. Cisco SA500 Series Security Appliances Administration Guide 138