Manualshelf

User guide

ManualsBrandsWatchguard ManualsNetworkingFirebox X5-W
151152153154155156157158159160
User Guide 135
Configuring Virtual Private Networks
CHAPTER 12 Configuring Virtual Private
Networks
A VPN (Virtual Private Network) creates secure connections between computers or networks in different
locations. This connection is known as a tunnel. The networks and hosts on a VPN tunnel can be corpo-
rate headquarters, branch offices, remote users, or telecommuters. When a VPN tunnel is created, the
two tunnel endpoints are authenticated. Data in the tunnel is encrypted. Only the sender and the recip-
ient of the message can read it.
About This Chapter
This chapter starts with a section that tells you the basic requirements for your Firebox® X Edge e-Series
to create a VPN. Start with “What You Need to Create a VPN” on page 135.
The subsequent section tells you how to configure the Firebox X Edge to be the endpoint of a VPN tun-
nel created and managed by a WatchGuard® Firebox X Core or Peak Management Server. This procedure
is different for different versions of WatchGuard System Manager appliance software installed on the
Firebox X Core or Peak. This section also gives procedures for VPN tunnels managed by VPN Manager
(available with earlier versions of Watchguard management software).
Information about how to configure a Manual VPN to connect to another VPN device also is included in
this chapter. Use this section to create VPN tunnels to any other IPSec VPN endpoint.
The last part of this chapter includes frequently asked questions, information on how to keep the VPN
tunnel operating correctly, and instructions on how to see VPN tunnel statistics. These last sections can
help you troubleshoot problems with VPN.
For more information on VPN tunnels, see the FAQ information available at
https://www.watchguard.com/support/kb/
What You Need to Create a VPN
Before you configure your WatchGuard® Firebox® X Edge VPN network, read these requirements:
You must have two Firebox X Edge devices or one Firebox X Edge and a second device that uses
IPSec standards. Examples of these devices are a Firebox III, Firebox X Core, Firebox X Peak, or a
Firebox SOHO 6. You must enable the VPN option on the other device if it is not already active.