TMS zl Management and Configuration Guide ST.1.1.100226
7-258
Virtual Private Networks
Configure a GRE over IPsec VPN with IKE
Exact steps for configuring these policies are given in the sections below.
Unicast Access Policies
1. In the left navigation bar of the Web browser interface, click Firewall >
Access Policies. The Unicast tab is displayed.
2. Click Add a Policy.
3. Allow GRE messages from the remote tunnel endpoint:
a. For Action, leave the default Permit Traffic.
b. For From, select the remote zone.
c. For To, select Self.
d. For Service, specify (47) GRE.
e. For Source, specify the public IP address of the remote tunnel end-
point.
You can select a previously configured address object or type the IP
address manually. (Click Options and select the custom option.)
f. For Destination, leave Any Address or specify the IP address that you
configured for the tunnel’s source IP address.
g. Click Apply.
•Dynamic
routing
over the
tunnel
•Default
policies
disabled
Unicast SELF Tunnel OSPF or RIP 5 6 — 1
•Dynamic
routing
over the
tunnel
•Default
policies
disabled
Multicast Tunnel SELF OSPF or RIP 6 Any Address
or multicast
address
—1
•Dynamic
routing
over the
tunnel
•Default
policies
disabled
Multicast SELF Tunnel OSPF or RIP 5 Any Address
or multicast
address
—1
When
Required
Typ e From Zone To Zone Service Source Destination MSS Number of
policies