Configuring WINS and DNS Servers
2From the Type
3From the Authentication
4From the Encryption
The options are None, DES, 3DES, and AES 128, 192, or 256 bit, which appear in the list from the most simple and least secure to most complex and most secure.
5To make the gateway endpoints generate and exchange new keys after a quantity of time or amount of traffic passes, select the Force Key Expiration check box. In the fields below, enter a quantity of time and a number of bytes after which the key expires.
If Force Key Expiration is disabled, or if it is enabled and both the time and kBytes are set to zero, the Firebox tries to use the key expiration time set for the peer. If this is also disabled or zero, the Firebox uses a key expiration time of 8 hours.
You can set the time up to one year.
6Click OK.
Allowing Internet access through Mobile VPN tunnels
You can give remote users access to the Internet through a Mobile VPN tunnel when you use the MUVPN wizard and select the Yes, force all Internet traffic to flow through the tunnel radio button on the “Direct the flow of Internet traffic” screen.
This option adds
Configuring WINS and DNS Servers
RUVPN and Mobile VPN clients rely on shared Windows Internet Name Server (WINS) and Domain Name System (DNS) server addresses. DNS translates host names into IP addresses. WINS resolves NetBIOS names to IP addresses. These servers must be accessible from the Firebox® trusted interface.
Make sure you use only an internal DNS server. Do not use external DNS servers.
1From Policy Manager, select Network > Configuration. Click the WINS/DNS tab.
The information for the WINS and DNS servers appears.
2Type a domain name for the DNS server.
3In the DNS Servers and WINS Servers text boxes, type the addresses for the WINS and DNS servers.
Administrator Guide | 17 |