Virtual Private Network (VPN) Gateway Rules
The VPN tab allows you to define Virtual Private Network (VPN) gateways. Defining VPN gateways using this mechanism simplifies the creation of VPNs that include more than two gateways.
Note -
Each gateway in this type of configuration must be able to connect to the other ones directly--without going through another gateway.
Defining VPN Gateways
Use the fields in the VPN dialog window to define VPN gateways:
-
Rule Index (No) -- (Optional) Assigns a number to a rule. By default, this field displays a number one greater than the last rule (indicating this rule will be placed bottom of the list. If you type a lower number, the new rule is inserted into the specified position in the list, and the rules currently in the configuration are renumbered.
-
Name -- Specifies the Name of the VPN to which this gateway belongs.
Note -Type the same name in the Name field for each gateway that you include in the VPN.
-
Address -- Specifies the machine to be included in the VPN.
-
Certificate -- Specifies the name of the certificate for this VPN gateway.
-
Key Algorithm -- Specifies the issued certificate (key) algorithm the VPN uses.
All gateways in the same VPN must use the same issued certificate (key) algorithm.
-
Data Algorithm -- Specifies the data algorithm the VPN uses.
All gateways in the same VPN must use the same data algorithm.
-
MAC Algorithm -- Specifies the MAC algorithm the VPN uses.
All gateways in the same VPN must use the same MAC algorithm.
-
Tunnel Address -- Specifies the destination address on the outer (unencrypted) IP packet to which tunnel packets are sent.
-
Description -- (Optional) Provides a short description of the VPN gateway.
Adding a VPN Rule
After you define the gateways in your VPN, add a Packet Filtering rule for this VPN. The simplest rule uses * for the source and destination address. This rule allows encrypted use of the specified service for all addresses in the VPN.
When you add a packet filtering rule for VPN, leave the Screen field empty.
-
Specify SECURE for the packet filtering action.
-
Type the name of the VPN in the VPN field.
- © 2010, Oracle Corporation and/or its affiliates