Mobile VPN with IKEv2 Connections
You can configure your Firebox to host Mobile VPN with IKEv2 sessions. When the device is configured for Mobile VPN with IKEv2, users included in the Mobile VPN with IKEv2 group can use an IKEv2 client to make an IKEv2 connection.
Make sure that a policy for IKEv2 VPN sessions that includes only users you want to allow to send traffic over the IKEv2 VPN is included in your configuration. You can also add these users to a Firebox User Group and add a policy that allows traffic only from this group. The Firebox creates a pre-configured group named IKEv2-Users and a policy named Allow IKEv2-Users for this purpose.
In Fireware v12.3, the steps to connect to the Mobile VPN with IKEv2 wizard and to edit the Mobile VPN with IKEv2 configuration changed. In Fireware v12.2 1 or lower, select VPN > Mobile VPN with IKEv2 to configure Mobile VPN with IKEv2. In Policy Manager v12.2 1 or lower, select VPN > Mobile VPN > IKEv2 > Configure.
- Select VPN > Mobile VPN.
The Mobile VPN selection page appears. - To configure IKEv2 for the first time, Use the WatchGuard IKEv2 Setup Wizard.
- To edit an existing IKEv2 configuration, Edit the Mobile VPN with IKEv2 Configuration.
To configure a Mobile VPN with IKEv2 connection from Policy Manager:
- Select VPN > Mobile VPN > IKEv2 > Get Started.
The Mobile VPN selection page appears. - To configure IKEv2 for the first time, Use the WatchGuard IKEv2 Setup Wizard.
- To edit an existing IKEv2 configuration, Edit the Mobile VPN with IKEv2 Configuration.