Cisco Cisco FirePOWER Appliance 8390
11-6
FireSIGHT System User Guide
Chapter 11 Using Gateway VPNs
Managing VPN Deployments
Configuring VPN Deployments
License:
VPN
Supported Devices:
Series 3
When you create a new VPN deployment you must, at minimum, give it a unique name, specify a
deployment type, and designate a pre-shared key. You can select from three types of deployment, each
containing a group of VPN tunnels:
deployment type, and designate a pre-shared key. You can select from three types of deployment, each
containing a group of VPN tunnels:
•
Point-to-point (PTP) deployments establish a VPN tunnel between two endpoints.
•
Star deployments establish a group of VPN tunnels connecting a hub endpoint to a group of leaf
endpoints.
endpoints.
•
Mesh deployments establish a group of VPN tunnels among a set of endpoints.
Only Cisco managed devices can be used as endpoints in Cisco VPN deployments. Third-party endpoints
are not supported.
are not supported.
You must define a pre-shared key for VPN authentication. You can specify a default key to use in all of
the VPN connections you generate in a deployment. For point-to-point deployments, you can specify a
pre-shared key for each endpoint pair.
the VPN connections you generate in a deployment. For point-to-point deployments, you can specify a
pre-shared key for each endpoint pair.
See the following sections for more information on creating each type of VPN deployment:
•
•
•
Configuring Point-to-Point VPN Deployments
License:
VPN
Supported Devices:
Series 3
When configuring a point-to-point VPN deployment, you define a group of endpoint pairs and then
create a VPN between the two nodes in each pair. For more information, see
create a VPN between the two nodes in each pair. For more information, see
The following list describes the options you can specify in your deployment.
Table 11-1
VPN Deployment Management Actions
To...
You can...
create a new VPN deployment
click
Add
. See
for more
information.
modify the settings in an existing VPN
deployment
deployment
click the edit icon (
). See
for
more information.
view the status of an existing VPN deployment click the status icon. See
more information.
apply a VPN deployment to all devices
targeted in the deployment
targeted in the deployment
click the apply icon (
). See
for
more information.
delete a VPN deployment
click the delete icon (
), then click
Yes
, or click
No
if you decide not to
delete the deployment.