Tunnel Group

9 Tunnel Group

Users can configure tunnel groups to include one, two, or more IPSec tunnels for the same protected network. The tunnels in the group can work in active/standby mode or load balance mode.

Access the tunnel group configuration elements by navigating to Site, Advanced, Tunnel Groups. Use the plus symbol (+) to add a new element and use the pencil marker symbol to edit an existing record.

This screenshot shows the proper tunnel group configuration.

For all IPSec tunnels in the tunnel group, many IPSec configuration parameters are the same. Those parameters are configured under Tunnel Group section. The allowed values for those parameters are same as normal IPSec configuration. For more information, see IKE/IPSec Configuration.

This screenshot shows the basic settings configuration. This screenshot shows the IPSec Settings configuration

To add a tunnel to the group, use the plus symbol (+). Use the pencil marker symbol to edit an existing tunnel.

Complete the following parameters:

Tunnel Name—Select the auto-generated name or type in the text in the name box.
Local IP—Dropdown list of Virtual IPs or Interface name for a DHCP-enabled interface.
Peer IP—The other end of the component for which IPsec tunnel needs to be established.
MTU—The default value is 1500 bytes.
Tunnel Type—Primary/Secondary or Load balance.
Enable—If disabled, this tunnel will not be used.

This screenshot shows the Tunnel Detail dialog.