B-37
User Guide for CiscoSecurity Manager3.0.1
OL-8214-02
AppendixB Site-to-Site VPN User Interface Reference Site to Site VPN Policies
Site to Site VPN PoliciesYoucan access site-to-site VPN policies by selecting Tools > Site-To-Site VPN
Manager, or clicking the Site-To-SiteVPN Manager button on the toolbar, and
then selecting the required policy in the Policies selector of the Site-to-Site VPN
window.
You can also access site-to-site VPN policies from Device view or Policy view.
In Device view,you can see the VPN topology (topologies) to which each device
in the Security Manager inventory belongs, and if necessary, change its
assignment to or from a VPN topology. For more information, seeVPN
Topologies Device View Page, page B-85.
Formore information about accessing site-to-site VPN policies from Policy view,
see Managing Shared Site-to-Site VPN Policies in Policy View, page9-56.
These topics describe the pages of the policies that you can assign to your VPN
topologies:
•IKE Proposal Page, page B-37
•IPSec Proposal Page, page B-39
•VPN Global Settings Page, page B-44
•Preshared Key Page, page B-53
•Public Key Infrastructure Page, page B-57
•GRE Modes Page, page B-59
•Easy VPN IPSec Proposal Page, pageB-69
•User Group Policy Page, page B-73
•Tunnel GroupPolicy (PIX 7.0/ASA) Page, page B-74
•Client Connection Characteristics Page, page B-83
IKE Proposal Page
Use the IKE Proposal page to select the IKE proposal that will be used to secure
the IKE negotiation between two peers. An IKE proposal is a mandatory policy
that is already configured in your VPN topology with predefined default values.