7 maintaining vpns, Managing ipsec vpn domains, Auto-discovering ipsec vpns – H3C Technologies H3C Intelligent Management Center User Manual

Page 164

Advertising
background image

154

7 Maintaining VPNs

This chapter describes how to maintain the IPsec VPN, GRE over IPsec, and DVPN domains.
For information about how to add VPN domains, and configure and deploy tunnels in a VPN domain,

see "

4 Building VPN networks with IVM

" and "

5 Building VPN networks with IVM and BIMS

".

Managing IPsec VPN domains

Use the management functions for IPsec VPN domains in IVM.

Auto-discovering IPsec VPNs

IVM defines an IPsec VPN as an IPsec VPN domain. IVM can automatically discover IPsec VPNs in the

network, and allows you to save a discovered IPsec VPN as an IPsec VPN domain.
IVM discovers IPsec VPNs by reading the IPsec information from the hub devices. It can discover hub

clients that are managed by the IMC Platform, but not those managed through IMC BIMS.
To automatically discover IPsec VPNs:

1.

Click the Service tab.

2.

From the navigation tree, select IPsec VPN Manger > Automatic Discovery.
The page for selecting a hub device appears.

3.

Select the IPsec VPN as the automatic discovery type.

4.

Click Select Device button at the right of the Select Hub field.
A window appears for you to select a hub by view through step 5 or by query through step 6. You
can add only one hub device.

5.

Add a hub by view:

a.

Click the By View tab.
There are three types of view: IP View, Device View, and Custom View.

b.

Collapse a view.
All devices for the view are displayed at the upper right of the window.

c.

Select a device in the Devices Found list and click the Add selected icon

to add the device

to the Selected Devices list.
To remove a device from the Selected Devices list, select a device in the Selected Devices list
and click the Remove Selected icon

.

d.

Click OK.

6.

Add a hub by query:

a.

Click the Advanced tab, which provides the following query conditions:

Device IP—Enter the IPv4 address of a device. If you select Exact Query, you must enter a

complete IPv4 address. If you do not select Exact Query, you can enter an incomplete IP

Advertising
Popular Brands
Popular manuals