Home » Symantec Manuals » Computer Software » Symantec 16-00-00091 » Manual Viewer

Symantec 16-00-00091 Installation Guide - Page 101

Dynamic tunnel, Symantec Firewall/VPN Dynamic tunnel configuration

UPC - 037648211703

View all Symantec 16-00-00091 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 101 highlights

Dynamic tunnel Dynamic tunnel Dynamic tunnels differ from static tunnels in that both ends of the tunnel exchange the encryption keys dynamically. You do not have to configure these ahead of time. Figure 7-4: VPN Dynamic tunnel diagram Symantec Firewall/VPN Dynamic tunnel configuration On the Symantec Firewall/VPN appliance, select the VPN - Dynamic option from the configuration page. You should be presented with a screen similar to Figure 7-5 on page 7-8. Initially, the screen you see should be blank, with a few of the defaults entered. In order to properly configure a dynamic tunnel, you will need the following information from the SEVPN: • Gateway IP address of the SEVPN. • Shared Secret. • Destination network protected by the SEVPN. • Netmask of the destination network protected by the SEVPN. • Encryption parameters on SEVPN (DES, 3DES, SHA1, etc.) • Perfect Forward Secrecy setting. 7-7

Section	Page
Symantec Firewall / VPN 100 / 200 / 200R Models	1
Installation and Configuration Guide	1
October, 2001	1
Copyright Notice	2
Trademarks	2
SYMANTEC APPLIANCE LICENSE AND WARRANTY AGREEMENT	3
A. use the Software solely as part of the Appliance for no more than the number of users as have ...	3
B. use the Restore Software solely to restore the Appliance to its original factory functionality...	3
C. make copies of the printed documentation which accompanies the Appliance as necessary to suppo...	3
D. after written notice to Symantec, in connection with a transfer of the Appliance, transfer the...	3
A. sublicense, rent or lease any portion of the Software; reverse engineer, decompile, disassembl...	3
B. use the Restore Software for any purpose other than to restore the Appliance to the original f...	3
C. use, if you received the Software distributed on an Appliance containing multiple Symantec pro...	3
D. use the Software in any manner not authorized by this license.	3
A. has been altered, supplemented, upgraded or modified in any way; or	4
B. has been repaired except by Symantec or its designee.	4
Service and support solutions	6
Technical support	6
Support for old and discontinued versions	6
Customer service	7
Worldwide service and support	7
Service and support offices	8
North America	8
Argentina and Uruguay	8
Asia/Pacific Rim	8
Brazil	8
Europe, Middle East, and Africa	9
Mexico	9
Other Latin America	9
Subscription policy	9
1	15
Product Overview	15
Firewall - Stateful Inspection	15
Networking	16
Virtual Private Networking (VPN)	16
High Availability / Load Balancing	16
Automatic Dial Up Back Up	16
IP Address Sharing	16
Logging - Onboard Logging	17
Remote Accessibility	17
IPSec/VPN Pass Through	17
Other Networking Features	17
Features	17
Symantec Firewall/VPN 100	17
Symantec Firewall/VPN 200	19
Symantec Firewall/VPN 200R	19
Symantec Firewall/VPN international symbols	20
Management/Configuration interface	21
2	23
Installation	23
Prerequisites	23
Network requirements	23
Cautions and warnings	24
Internet account information	25
Connecting the cables	25
To connect the cables	26
Configuring your computer	27
3	29
Configuration	29
Management / Configuration interface	29
To start the User interface	29
Basic configuration	30
Language Selection screen	30
Main Setup Screen	31
To configure using the Symantec Firewall/VPN 200 Main Setup screen	32
Required by Optional Network Settings section	33
To configure for cable modem using DHCP	33
To configure for DSL or cable modem using PPPoE	34
Static IP and DNS	35
DNS Gateway section	36
Status	37
LAN IP and DHCP	37
UNIT LAN IP	38
DHCP	39
Config Password	39
To configure a password	40
4	41
Advanced Configuration	41
Advanced PPPoE	41
Dynamic DNS Service	44
Optional Dynamic DNS settings	46
Routing	46
Routing table data	48
Other routers on the local LAN	48
Host IP and Group	50
Access Filters	52
Security Groups	53
Special Applications	54
Virtual Servers	57
Types of Virtual Servers	57
Virtual Servers example - IP Address seen by Internet users	59
Custom Virtual Server	60
Existing Custom Virtual Servers	61
Exposed Host (DMZ)	62
Expert Level	64
Expert Level Connection fields	66
Load Balance	66
SMTP Bind	66
Idle Renew DHCP	66
MTU LAN PC	66
Echo Request Timeout	66
Expert Level - Advanced Features section fields	67
Allow IDENT Port	67
NAT Function	67
RIP V2	67
Log Level	67
IPsec Type	67
Language	67
Expert Level - SNMP Trap Receiver section fields	68
Expert Level - Remote Access IP Range section fields	68
Allow Remote Upgrade	68
5	69
Configuring Virtual Private Networks (VPN)	69
To configure a VPN using Static Key	71
To update a VPN configuration using Static Key	73
To delete a VPN configuration using Static Key	73
Static tunnel example	74
To configure a VPN with Dynamic Key	76
To update a VPN configuration using Dynamic Key	79
To delete a VPN configuration using Dynamic Key	79
Dynamic tunnel example	80
VPN Client Identity	82
6	85
Utilities	85
Backup / Analog / ISDN	85
Serial configuration console	88
Manual reset	90
Configuration back up	91
View Log	92
Log Settings	92
7	95
Configuring the Symantec Firewall/VPN to the Symantec Enterprise VPN	95
Static tunnel	96
Symantec Firewall/VPN Static tunnel configuration	97
SEVPN Static tunnel configuration	100
Dynamic tunnel	101
Symantec Firewall/VPN Dynamic tunnel configuration	101
SEVPN Dynamic tunnel configuration	104
8	105
Connecting to Symantec Enterprise VPN Client	105
Configuring Symantec Enterprise VPN Client with Symantec Firewall/VPN 200R	106
Configure Symantec Firewall/VPN 200R for a dynamic tunnel to Symantec Enterprise VPN Client	107
Configure Symantec Enterprise VPN Client for a Dynamic tunnel to Symantec Firewall/VPN 200R	111
9	113
Trouble Shooting	113
Problem 1: Can not connect to the Symantec Firewall/VPN to configure it.	113
Problem 2: When I enter a URL or IP address I get a time out error.	113
Problem 3: Some applications do not run properly when using the Firewall/VPN.	114
Problem 4: PPPoE will not authenticate.	114
10	117
Firmware Upgrades	117