Cisco Cisco Firepower Management Center 4000

VPN

Series 3

When you create a new VPN deployment you must, at minimum, give it a unique name, specify a 
deployment type, and designate a pre-shared key. You can select from three types of deployment, each 
containing a group of VPN tunnels:

Point-to-point (PTP) deployments establish a VPN tunnel between two endpoints.

Star deployments establish a group of VPN tunnels connecting a hub endpoint to a group of leaf 
endpoints.

Mesh deployments establish a group of VPN tunnels among a set of endpoints.

Only Cisco managed devices can be used as endpoints in Cisco VPN deployments. Third-party endpoints 
are not supported.

You must define a pre-shared key for VPN authentication. You can specify a default key to use in all of 
the VPN connections you generate in a deployment. For point-to-point deployments, you can specify a 
pre-shared key for each endpoint pair.

See the following sections for more information on creating each type of VPN deployment:

VPN

Series 3

When configuring a point-to-point VPN deployment, you define a group of endpoint pairs and then 
create a VPN between the two nodes in each pair. For more information, see 

The following list describes the options you can specify in your deployment.

create a new VPN deployment

click 

. See 

 for more 

information.

modify the settings in an existing VPN 
deployment

click the edit icon (

). See 

 for 

more information.

view the status of an existing VPN deployment click the status icon. See 

 for 

more information.

apply a VPN deployment to all devices 
targeted in the deployment

click the apply icon (

). See 

 for 

more information.

delete a VPN deployment

click the delete icon (

), then click 

, or click 

 if you decide not to 

delete the deployment.