Cisco SA520-K9 Administration Guide - Page 139

Configuring VPN Configuring an IPsec VPN Tunnel for Remote Access with a VPN Client 7 For the example illustrated in Figure 5, the remote site, Site B, has a subnet mask of 255.0.0.0. NOTE The IP address range used on the remote LAN must be different from the IP address range used on the local LAN. STEP 6 Click Apply to save your settings. The settings are not saved on the Wizard page. The Wizard creates a VPN policy and an IKE policy based on your entries. NOTE Next steps: • If you are using the Getting Started (Advanced) page, click Getting Started > Advanced to return to the list of configuration tasks for Site-to-Site VPN. • To review or update the configured VPN policy click IPsec > VPN Policies. For more information, see Configuring the IPsec VPN Policies, page 148. • To review or update the configured IKE policy, click IPsec > IKE Policies. For more information, see Configuring the IKE Policies for IPsec VPN, page 144. • To configure IPsec passthrough, click IPsec > Passthrough. For more information, see Configuring IPsec Passthrough, page 153. Configuring an IPsec VPN Tunnel for Remote Access with a VPN Client This section describes how to configure an IPsec VPN tunnel for remote access with a VPN client, or by using Standard IPsec (Xauth). The VPN Wizard helps you to set up a tunnel to allow workers to connect to your network from remote locations by using an IPsec VPN client. After creating the policies through the Wizard, you can update any of the parameters by using the other options in the navigation pane. The Wizard sets most parameters to defaults as proposed by the VPN Consortium (VPNC), and assumes a pre-shared key, which greatly simplifies setup For information about the VPNC recommendations, see: www.vpnc.org/vpnstandards.html. Cisco SA500 Series Security Appliances Administration Guide 139