Centralized Firewall Management Administration Guide

Technical Documentation>  VPN Topology>  IPSec VPN Topology>  Topologies>  Adding a VPN Topology>  Adding Device 1 and Device 2 (For Point-to-Point Topology)
Table of Contents

Adding Device 1 and Device 2 (For Point-to-Point Topology)

To add Device 1 and Device 2

  1. Select a device that is part of a group from the Choose Devices drop-down menu. You can also search for the device or group in the list by typing the name in the input field.

  2. Enter the Device 1 details.

    WAN Interface Select a WAN Interface.
    Primary WAN IP Enter the primary gateway in the field.
    Secondary WAN IP Enter the secondary gateway in the field.
    Local IKE ID Criteria

    Choose from Firewall ID, IPV4 Address, Domain Name, Key Identifier, and Email Address.
    IKE ID

    This field is auto-populated if Firewall ID is selected as Local IKE ID Criteria and cannot be edited.

    Enter the IKE ID if any other option is selected.
    Source Address/Network

    Select an Address Object or Address Group from the drop-down menu. If the list is empty, you can add a new address object and group. Click the Edit icon to add or edit Address Object and Group. For more information, refer to Adding Address Objects or Adding Address Groups.

    If you are creating an Address Object while configuring a Hub, the Zone Assignment drop-down menu displays the Default and Custom zones of the selected device.

  3. Click the caret icon next to the Device 2 details.

  4. Select a device from the Choose devices drop-down menu and click Apply.

    You can also search for the devices or groups in the list by typing the name in the input field.

    Device 1 and Device 2 should not have overlapping IP Addresses in any of the fields.

  5. Enter the configuration details.

    WAN Interface Select a WAN Interface.
    Local IKE ID Criteria

    Choose from Firewall ID, IPV4 Address, Domain Name, Key Identifier, and Email Address.
    IKE ID

    This field is auto-populated if Firewall ID is selected as Local IKE ID Criteria and cannot be edited.

    Enter the IKE ID if any other option is selected.
    Source Address/Network

    Select an Address Object or Address Group from the drop-down menu. If the list is empty, you can add a new address object and group. Click the Edit icon to add or edit Address Object and Group. For more information, refer to Adding Address Objects or Adding Address Groups.

    If you are creating an Address Object while configuring a Hub, the Zone Assignment drop-down menu displays the Default and Custom zones of the selected device.

  6. Click Next.

    Sections with incomplete fields are marked as Need input. When all required fields are completed and accepted (if applicable), the section is marked as Configured, and Next becomes available.

Chat