VPN device is a virtual network interface for connecting VPN clients. This type of interface is clustered interface, which means it virtually exists on all cluster's nodes, and if high availability cluster is configured, VPN clients will be automatically switched to a backup node without VPN connection interruption. To create a new VPN interface, click on Add in Network-->Interfaces and select Add VPN. Set the following fields:
|
Name |
Description |
|---|---|
|
Name |
Name of the interface as tunnelN, where N is the number of virtual device. |
|
Description |
The description of the interface. |
|
Zone |
The zone of the interface. VPN clients will be assigned to this zone when connected. |
|
Netflow profile |
An optional netflow profile that will be used for this interface. |
|
Mode |
IP address assignment mode -- Dynamic (via DHCP), Static, No address. Static mode should be used for serving VPN clients (remote access VPN and the server side of site-to-site VPN). |
|
MTU |
The MTU for the interface. |
UTM is preconfigured with 3 VPN interfaces:
-
tunnel1 is preconfigured for use for Remote access VPN.
-
tunnel2 is preconfigured for use for server side of Site-to-Site VPN.
-
tunnel3 is preconfigured for use for client side of Site-to-Site VPN.