Before You Begin
Before you configure a VPN, you must complete several preliminary tasks:
-
Install the SunScreen software on all Screens involved in the VPN.
For detailed information on Screen installation, refer to the SunScreen Installation Guide.
Note -Each Screen must have its own local certificate.
If you install a Screen with remote administration, this certificate is generated automatically. If not, refer to "To Generate SKIP UDHs Certificates" for details on how to create this certificate if you are using SKIP or to "To Generate an IKE Certificate" if you are using IKE.
-
Add a certificate object to each Screen for every other Screen in the VPN.
For more information on adding certificates, refer to "To Associate SKIP Certificate" if you are using SKIP or to."To Associate an IKE Certificate" if you are using IKE.
-
Create Address objects (host, group, or range) on each Screen for any address in the VPN, including an Address object for each Screen as well.
Refer to "Address Objects" for more information.
Once you successfully complete these tasks, set up the VPN by defining VPN gateways and creating packet filtering rules as described in the following sections.
- © 2010, Oracle Corporation and/or its affiliates