Help - VPN Policies
This screen allows you to manage VPN policies.
- Traffic covered by an enabled policy will automatically be sent via a VPN tunnel. If the VPN tunnel does not exist, it will be created.
- Where traffic is covered by 2 or more policies, the first matching policy will be used.
(In this situation, the order of the policies is important . However, if you only have 1 policy for each remote VPN Endpoint, then the policy order is not important.)
- The VPN tunnel is created according to the parameters in the SA (Security Association).
- The remote VPN Endpoint must have a matching SA, or it will refuse the connection.
There are 2 types of VPN Policies:
- Manual - All settings (including the keys) for the VPN tunnel are manually input at each end (both VPN Endpoints).
- Auto - Some parameters for the VPN tunnel are generated automatically. This requires using the IKE (Internet Key Exchange) protocol to perform negotiations between the 2 VPN Endpoints.
|