Cisco Systems VPN 3000 Manual

A SERVICE OF

next previous

7 Tunneling Protocols

7-16

VPN 3000 Concentrator Series User Guide

Wildcard Mask

Enter the wildcard mask for the private remote network. Use dotted decimal notation; e.g.,

0.255.255.255. The system supplies a default wildcard mask appropriate to the IP address class.

Add or Apply / Cancel

Add screen: To add this connection to the list of configured LAN-to-LAN connections, click Add. If

you are creating new network lists, the Manager automatically displays the appropriate

Local or

Remote Network List screens. Otherwise, the Manager displays the Configuration | System | Tunneling

Protocols | IPSec LAN-to-LAN | Add | Done

screen.

Modify screen: To apply your changes to this LAN-to-LAN connection, click Apply. Any changes

take effect as soon as you click

Apply. If client sessions are using this connection, changes delete the

tunnel—and the sessions—without warning. The Manager returns to the

Configuration | System |

Tunneling Protocols | IPSec LAN-to-LAN

screen.

Reminder: The Manager immediately includes your changes in the active configuration. To save the active

configuration and make it the boot configuration, click the

Save Needed icon at the top of the Manager

window.

To discard your entries, click

Cancel. The Manager returns to the Configuration | System | Tunneling

Protocols | IPSec LAN-to-LAN

screen, and the LAN-to-LAN Connection list is unchanged.

Configuration | System | Tunneling Protocols |

IPSec LAN-to-LAN | Add | Local or Remote Network List

These screens let you configure and add network lists for the Local Network or Remote Network of a new

IPSec LAN-to-LAN connection. The Manager automatically opens these screens if you select

Create new

Network List

under Network List on the Configuration | System | Tunneling Protocols | IPSec LAN-to-LAN | Add

screen.

A network list is a list of network addresses that are treated as a single object. See the

Configuration |

Policy Management | Traffic Management | Network Lists

screens also.

On the

Local Network List screen, the Manager can automatically generate a network list using the valid

network routes in the routing table for the Ethernet 1 (Private) interface of this VPN Concentrator. (See

Monitoring | Routing Table.)

A single network list can contain a maximum of 200 network entries.