![]() ![]() Review the rule position on the firewall rule list. We recommend setting the gateway at your central location (example: head office) to Respond only and the gateway at your remote locations (example: branch offices) to Initiate the connection.Ĭreates a firewall rule automatically for this connection. Initiate the connection: Establishes the connection every time the VPN service or the firewall restarts. Respond only: Keeps the connection ready to respond to any incoming request. You must assign an IP address to the tunnel interface and then configure static or dynamic routing.Īction to take when the VPN service or the firewall restarts:ĭisable: Connection remains inactive until a user activates it. The interface name is xfrm, followed by a number. Tunnel interface: Establishes a route-based VPN connection and creates a tunnel interface between two endpoints. Host-to-host: Establishes a secure connection between two hosts, for example between two computers. You can use this connection to connect a branch office to corporate headquarters. Site-to-site: Establishes a secure connection between the local and remote subnets over the internet. You can't use this configuration file with the Sophos Connect client. Users must import it to the VPN client on their endpoint devices. Go to the connection you configured, and download the. To establish a remote connection using this option, remote users must have a third-party VPN client. Remote access (legacy): Establishes a secure connection between an individual host and a private network over the internet. The tunnel only forwards data that uses the specified IP version. Go to VPN > IPsec connections and click Add.You can configure host-to-host, site-to-site, and route-based IPsec connections.įor remote access IPsec connections, we recommend that you configure VPN > IPsec (remote access) rather than the remote access (legacy) option. Your browser doesn’t support copying the link to the clipboard. It will remain unchanged in future help versions. Comparing policy-based and route-based VPNsĪlways use the following when referencing this page.
0 Comments
Leave a Reply. |