Configuring wins and dns servers – WatchGuard VPN v10.0 User Manual

Page 19

Advertising
background image

Administrator Guide

17

Configuring WINS and DNS Servers

2

From the Type drop-down list, select ESP or AH as the proposal method. Only ESP is supported
at this time.

3

From the Authentication drop-down list, select SHA1 or MD5 for the authentication method.

4

From the Encryption drop-down list, select the encryption method.

The options are None, DES, 3DES, and AES 128, 192, or 256 bit, which appear in the list from the
most simple and least secure to most complex and most secure.

5

To make the gateway endpoints generate and exchange new keys after a quantity of time or
amount of traffic passes, select the Force Key Expiration check box. In the fields below, enter a
quantity of time and a number of bytes after which the key expires.

If Force Key Expiration is disabled, or if it is enabled and both the time and kBytes are set to zero,
the Firebox tries to use the key expiration time set for the peer. If this is also disabled or zero, the
Firebox uses a key expiration time of 8 hours.

You can set the time up to one year.

6

Click OK.

Allowing Internet access through Mobile VPN tunnels

You can give remote users access to the Internet through a Mobile VPN tunnel when you use the
MUVPN wizard and select the Yes, force all Internet traffic to flow through the tunnel radio button
on the “Direct the flow of Internet traffic” screen.

This option adds Any-External as an allowed resource, which means that traffic destined to go out any
external interface is allowed.

Configuring WINS and DNS Servers

RUVPN and Mobile VPN clients rely on shared Windows Internet Name Server (WINS) and Domain
Name System (DNS) server addresses. DNS translates host names into IP addresses. WINS resolves

NetBIOS names to IP addresses. These servers must be accessible from the Firebox® trusted interface.

Make sure you use only an internal DNS server. Do not use external DNS servers.

1

From Policy Manager, select Network > Configuration. Click the WINS/DNS tab.

The information for the WINS and DNS servers appears.

2

Type a domain name for the DNS server.

3

In the DNS Servers and WINS Servers text boxes, type the addresses for the WINS and DNS
servers.

Advertising
Popular Brands
Popular manuals