Cisco Cisco Firepower Management Center 4000

Note that you must apply the deployment for it to take effect; see 

VPN

Series 3

When configuring a star VPN deployment, you define a single hub node endpoint and a group of leaf 
node endpoints. You must define the hub node endpoint and at least one leaf node endpoint to configure 
the deployment. For more information, see 

.

The following list describes the options you can specify in your deployment.

Give the deployment a unique name.

Click 

 to specify that you are configuring a star deployment.

Define a unique pre-shared key for authentication.

You can select a managed device, including a device stack or cluster, as an endpoint for your 
deployment. For Cisco managed devices not managed by the Defense Center you are using, select 

 and then specify an IP address for the endpoint.

If you selected a managed device as your endpoint, select a virtual router that is currently applied 
to the selected device. You cannot select the same virtual router for more than one endpoint.

If you selected a managed device as your endpoint, select a routed interface that is assigned to the 
selected virtual router.

If you selected a managed device as an endpoint, select an IP address that is assigned to the 
selected routed interface.

If the managed device is a device cluster, you can only select from a list SFRP IP addresses.

If you selected a managed device not managed by the Defense Center, specify an IP address for 
the endpoint.

Specify the networks in your deployment that are encrypted. Enter a subnet with CIDR block for 
each network.