Appendix B Site-to-Site VPN User Interface Reference

Site to Site VPN Policies

VPN Global Settings Page

Use the VPN Global Settings page to define global settings for IKE, IPSec, NAT, and fragmentation, that apply to devices in your VPN topology.

The following tabs are available on the VPN Global Settings page:

ISAKMP/IPSec Settings Tab, page B-44

NAT Settings Tab, page B-48

General Settings Tab, page B-50

Navigation Path

Open the Site-to-Site VPN Manager Window, page B-2, select a topology in the VPNs selector, then select VPN Global Settings in the Policies selector.

Note You can also open the VPN Global Settings page from Policy view. See Managing Shared Site-to-Site VPN Policies in Policy View, page 9-56.

ISAKMP/IPSec Settings Tab

Use the ISAKMP/IPSec Settings tab of the VPN Global Settings page to specify global settings for Internet Key Exchange (IKE) and IPSec.

Internet Key Exchange (IKE), also called Internet Security Association and Key Management Protocol (ISAKMP), is the negotiation protocol that lets two hosts agree on how to build an IPSec security association.

Navigation Path

The ISAKMP/IPSec Settings tab appears when you open the VPN Global Settings Page, page B-44. You can also open it by clicking the ISAKMP/IPSec Settings tab from any other tab in the VPN Global Settings page.

Related Topics

VPN Global Settings Page, page B-44

Understanding IKE, page 9-58

Understanding IPSec Tunnel Policies, page 9-63

Understanding ISAKMP/IPSec Settings, page 9-69

 

User Guide for Cisco Security Manager 3.0.1

B-44

OL-8214-02

Page 44
Image 44
3D Innovations 3.0.1 appendix VPN Global Settings, ISAKMP/IPSec Settings Tab