Modifying the vam server – H3C Technologies H3C Intelligent Management Center User Manual

Page 193

Advertising
background image

183

To modify global DVPN settings:

1.

Modify the name of the domain in the Domain Name field. The domain name must be unique in
IVM.

2.

Modify the description of the VPN domain in the Description field.

3.

The following DVPN parameters cannot be modified:

{

DVPN Name

{

DVPN Type

{

Private IP/Subnet Mask

{

Routing Protocol

{

DVPN Tunnel Protocol

{

Routing protocol-specific parameters

4.

Click

Security Parameters to display the VAM Security Parameters, IPsec Parameters, and

IPsec Proposal, and IKE Proposal area. You can modify the security parameter settings by
importing a security template through step 5 or directly modify the security parameters through

step 6.

5.

Import a security template:

a.

Select the Import from Security Template option. Select High, Medium, or Low in the Security
Level field. IVM defines a security template for each security level.

b.

The settings of the selected security template, including the VAM security parameters, IPsec
parameters, IPsec proposal, and IKE proposal will be filled in the corresponding areas on the

page.

6.

Modify the security parameters of the DVPN domain directly:
Modify the security parameters of a DVPN domain the same way you modify a DVPN security
template. For more information, see "

Managing DVPN security configuration

."

7.

Click OK.

Modifying the VAM server

1.

On the DVPN topology, click the VAM Server icon

.

The VAM server parameters are displayed at the bottom the DVPN domain topology.

A DVPN domain can contain two VAM servers. A grayed-out VAM Server icon

indicates the

VAM server is not specified. For information about how to add a VAM server to a DVPN domain,

see "

Configuring the VAM server

." This example assumes that only VAM Server 1 is specified.

2.

Modify the following settings for the VAM Server 1:

a.

Select the Binding Listening IP option to set a listening IP address on the VAM server.
By default, the VAM server accepts all VAM packets received on all interfaces.

b.

Modify the listening IP address in the Listening IP Address field.

c.

Modify the UDP port number of the VAM server in the Port field.
By default, the UDP port number of the VAM server is 18000.

3.

To configure a backup VAM server, click Select Device next to VAM Server 2, and then select a
device as the backup VAM server and configure the server settings as needed.

Advertising
Popular Brands
Popular manuals