Résumé du contenu de la page N° 5
Appendix B Site-to-Site VPN User Interface Reference Site-to-Site VPN Manager Window Table B-2 VPN Summary Page (continued) Element Description Primary Hub Available if the VPN topology type is hub-and-spoke. The name of the primary hub in the hub-and-spoke topology. Failover Hubs Available if the VPN topology type is hub-and-spoke. The name of any secondary backup hubs that are configured in the hub-and-spoke topology. Number of Spokes Available if the VPN topology type is hub-and-spok
Résumé du contenu de la page N° 6
Appendix B Site-to-Site VPN User Interface Reference Site-to-Site VPN Manager Window Table B-2 VPN Summary Page (continued) Element Description Routing Protocol Available only if the selected technology is GRE, GRE Dynamic IP, or DMVPN. The routing protocol and autonomous system (or process ID) number used in the secured IGP for configuring a GRE, GRE Dynamic IP, or DMVPN routing policy. Note Security Manager adds a routing protocol to all the devices in the secured IGP on deployment. I
Résumé du contenu de la page N° 7
Appendix B Site-to-Site VPN User Interface Reference Site-to-Site VPN Manager Window Peers Page Use the Peers page to view the endpoints defined for a VPN topology, including the internal and external VPN interfaces and protected networks assigned to the devices in the topology. The interface roles, or interfaces that match each interface role, may also be displayed for the VPN interfaces and protected networks. The Peers page contains a scrollable table displaying the device roles, VPN
Résumé du contenu de la page N° 8
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Table B-3 Peers Page (continued) Element Description Show Select to display either the interface roles or matching interfaces, for the VPN interfaces and protected networks in the table, as follows: • Interface Roles Only (default)—To display only the interface roles assigned to the VPN interfaces and protected networks. • Matching Interfaces—To display the interfaces that match the pattern of each interface role. If
Résumé du contenu de la page N° 9
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard The following pages describe the steps in the Create VPN wizard: • Name and Technology Page, page B-9 • Device Selection Page, page B-10 • Endpoints Page, page B-13 • High Availability Page, page B-34 Navigation Path 1. In the Site-to-Site VPN Manager Window, page B-2, click the Create VPN Topology button above the VPNs selector. 2. Select the type of VPN topology you want to create from the options that are displaye
Résumé du contenu de la page N° 10
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Related Topics • Create VPN Wizard, page B-8 • Editing a VPN Topology, page 9-24 • Understanding IPSec Technologies and Policies, page 9-8 • Defining a Name and IPSec Technology, page 9-12 Field Reference Table B-4 Create VPN wizard > Name and Technology Page Element Description Name A unique name you want to specify for the VPN topology, for identification purposes. Description Any descriptive text or comments that
Résumé du contenu de la page N° 11
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Note When editing the device selection for a VPN topology, the Device Selection tab is used. The elements of the tab (except for the buttons) are identical to those that appear on the Device Selection page. For more information, see Editing a VPN Topology, page 9-24. The contents of this page differ depending on the VPN topology type. For example, if you are creating or editing a hub-and-spoke topology, you also need
Résumé du contenu de la page N° 12
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Field Reference Table B-5 Create VPN wizard > Device Selection Page Element Description Available Devices Lists all devices that can be included in your selected VPN topology, that support the IPSec technology type, and which you are authorized to view. Note Clicking a device group selects all its devices. Hubs The devices you selected to be hubs in your hub-and-spoke topology. In an Easy VPN topology, the selected d
Résumé du contenu de la page N° 13
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Endpoints Page Use the Endpoints page of the Create VPN wizard to view the devices in your VPN topology, and define or edit their external or internal interfaces and protected networks. Note When editing a VPN topology, the Endpoints tab is used. The elements of the tab (except for the buttons) are identical to those that appear on the Endpoints page. For more information, see Editing a VPN Topology, page 9-24. The E
Résumé du contenu de la page N° 14
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Field Reference Table B-6 Create VPN wizard > Endpoints Page Element Description Role The role of the device—hub, spoke, or peer. Device The name of the device. VPN Interface The primary or backup VPN interface that is currently defined for the selected device. Depending on the selection in the Show list, the interface roles, or the interfaces that match each interface role, for the VPN interface may also be displaye
Résumé du contenu de la page N° 15
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Table B-6 Create VPN wizard > Endpoints Page (continued) Element Description Protected Networks The protected networks that are defined for the selected device. Depending on the selection in the Show list, the interface roles, or the interfaces that match each interface role, for the protected networks may also be displayed. Select a row and click Edit to change the device’s protected networks. The Edit Endpoints dia
Résumé du contenu de la page N° 16
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Table B-6 Create VPN wizard > Endpoints Page (continued) Element Description Finish button Saves your wizard definitions and closes the wizard. The new or edited VPN topology appears in the VPNs selector in the Site-to-Site VPN window, with the VPN Summary page displayed. See VPN Summary Page, page B-3. Cancel button Closes the wizard without saving your changes. Help Opens help for this page. Edit Endpoints Dialog B
Résumé du contenu de la page N° 17
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard • Clicking OK on any tab in the dialog box saves your definitions on all the tabs. Navigation Path You can access the Edit Endpoints dialog box from the Endpoints Page, page B-13 (or tab). Then select a device in the Endpoints table, and click Edit. Related Topics • Endpoints Page, page B-13 • Defining the Endpoints and Protected Networks, page 9-18 • Configuring Dial Backup, page 9-28 • Configuring a Catalyst VPN Se
Résumé du contenu de la page N° 18
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard becomes unavailable. You can only configure a backup interface on a Cisco IOS security router, which is a spoke in the VPN topology. For more information, see Understanding Dial Backup, page 9-27. Navigation Path The VPN Interface tab is displayed when you open the Edit Endpoints Dialog Box, page B-16. You can also open it by clicking the VPN Interface tab from any other tab in the Edit Endpoints dialog box. Related
Résumé du contenu de la page N° 19
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Table B-7 Edit Endpoints Dialog Box > VPN Interface Tab (continued) Element Description Connection Type Note This element is only available in a hub-and-spoke VPN topology, if the hub is an ASA or PIX 7.0 device and the selected technology is regular IPSec. To configure the ASA hub during an SA negotiation, select one of the following connection types: • Answer Only—To configure the hub to only respond to an SA negot
Résumé du contenu de la page N° 20
Appendix B Site-to-Site VPN User Interface Reference Create VPN Wizard Table B-7 Edit Endpoints Dialog Box > VPN Interface Tab (continued) Element Description Tunnel Source Available for a hub when the selected technology is GRE or DMVPN. To define the tunnel source address to be used by the GRE or DMVPN tunnel on the spoke side, click one of the following radio buttons: • VPN Interface—To use the selected VPN interface as the tunnel source address. • Another Existing Interface—To use a
Résumé du contenu de la page N° 1
APPENDIX B
Site-to-Site VPN User Interface
Reference
The pages that you access by selecting Site-To-Site VPN Manager from the
Tools menu, or clicking the Site-To-Site VPN Manager button on the toolbar,
help you configure site-to-site VPNs.
Note You can also configure site-to-site VPNs in Device view (View > Device View)
and Policy view (View > Policy View). For more information, see:
• Managing VPN Devices in Device View, page 9-53
• Managing Shared Site-to-Site VPN Policies in Policy View, page
Résumé du contenu de la page N° 2
Appendix B Site-to-Site VPN User Interface Reference Site-to-Site VPN Manager Window Site-to-Site VPN Manager Window Use the Site-to-Site VPN Manager window to: • View all available VPN topologies. • Create, edit, and delete VPN topologies. • View detailed information about each VPN topology. • View the endpoints defined for a VPN topology. • View and edit the policies assigned to a VPN topology. The VPNs selector, in the upper left pane of the window, lists all available VPN topologies
Résumé du contenu de la page N° 3
Appendix B Site-to-Site VPN User Interface Reference Site-to-Site VPN Manager Window Table B-1 Site-to-Site VPN Manager Window (continued) Element Description Edit VPN Topology button Opens the Edit VPN dialog box for editing a selected VPN topology. Note You can also edit a VPN topology by right-clicking it in the VPNs selector, and selecting the Edit option. Delete VPN Topology button Deletes a selected VPN topology. Note You can also delete a selected VPN topology by right-clicking i
Résumé du contenu de la page N° 4
Appendix B Site-to-Site VPN User Interface Reference Site-to-Site VPN Manager Window Navigation Path Open the Site-to-Site VPN Manager Window, page B-2, select a topology in the VPNs selector, then select VPN Summary in the Policies selector. Note • The VPN Summary page opens when you finish creating or editing a VPN topology. • The VPN Summary page also opens from Device view, when editing the VPN policies defined for a VPN topology. For more information, see Managing VPN Devices in De