Define a Tunnel
From Fireware XTM Web UI, you can add, edit, and delete branch office VPN tunnels.
- Select VPN > Branch Office VPN.
The Branch Office VPN page appears.
In the Tunnels section, click Add.
The New Tunnel dialog box appears.
- In the Name text box, type a name for the tunnel.
Make sure the name is unique among tunnel names, Mobile VPN group names, and interface names.
- From the Gateway drop-down list, select the gateway for this tunnel to use.
- To add the tunnel to the BOVPN-Allow.in and BOVPN-Allow.out policies, select the Add this tunnel to the BOVPN-Allow policies check box. These policies allow all traffic that matches the routes for this tunnel.
To restrict traffic through the tunnel, clear this check box and create custom policies for types of traffic that you want to allow through the tunnel.
You can now Add Routes for a Tunnel, Configure Phase 2 Settings, or Enable Multicast Routing Through a Branch Office VPN Tunnel.
Edit or Delete a Tunnel
You can use Fireware XTM Web UI to change or remove a tunnel.
To edit a tunnel:
- Select select VPN > Branch Office VPN.
- Select the tunnel and click Edit.
The Tunnel page appears.
- Make the changes and click Save.
To delete a tunnel:
- From the BOVPN page, select the tunnel..
- Click Remove.
Run the BOVPN Tunnel Configuration Report
After you add a tunnel, you can run a report to see a summary of all tunnel settings. The BOVPN Tunnel Configuration Report is a section of the XTM Configuration Report that shows the configuration settings for the selected tunnel. This report can be useful if you need to troubleshoot the VPN. It can also make it easier to compare the configured settings with the settings of the remote VPN endpoint device.
To run the report:
- In the Tunnels list, select a configured tunnel.
- Click Report.
The XTM Configuration Report appears in a new window. It automatically scrolls to the section for the selected tunnel.
For more information about this report, see Use the BOVPN Configuration Reports.