Configuration Wizards
Using the Site-to-Site VPN Wizard to Confi gure Site-to-Site VPN
Cisco ISA500 Series Integrated Security Appliances Administration Guide 70
2
STEP 13 Click OK to save your settings.
STEP 14 After you are finished, click Next.
Configuring Local and Remote NetworksSTEP 15 Use the Local and Remote VPN Networks page to configure the local and remote
networks.
•Local Subnet: Choose the IP address for your local network. Choose Any if
you want to enable the zone access control settings so that you can control
incoming traffic from remote VPN network to the zones over the VPN tunnels.
•Remote Subnet: Choose the IP address for the remote network. You must
know the IP address of the remote network before connecting the VPN
tunnel.
If the IP address object that you want is not in the list, choose Create a new
address to add a new address object or choose Create a new address
group to add a new address group object. To maintain the address and
address group objects, go to the Networking > Address Management page.
See Address Management, page175.
NOTE: The security appliance can support multiple subnets for establishing
the VPN tunnels. You should select an address group object including
multiple subnets for local and remote networks.
STEP 16 After you are finished, click Next.
Viewing Configuration Summary
STEP 17 Use the Summary page to view information for the IPsec VPN policy.
STEP 18 To modify any settings, click Back. If the configuration is correct, click Finish to
apply your settings.
STEP 19 After you click Finish, a warning message appears saying “Do you want to make
this connection active when the settings are saved? (Only one connection can be
active at a time.)”
• If you want to immediately activate the connection after the settings are
saved, click Activate Connection. After you save your settings, the security
appliance will immediately try to initiate the VPN connection.