VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Uživatelský manuál Strana 53

  • Stažení
  • Přidat do mých příruček
  • Tisk
  • Strana
    / 162
  • Tabulka s obsahem
  • ŘEŠENÍ PROBLÉMŮ
  • KNIHY
  • Hodnocené. / 5. Na základě hodnocení zákazníků
Zobrazit stránku 52
VMware, Inc. 53
Chapter 10 vShield Edge Management
5UnderStaticBindings,clickAddBindings.
Anewrowappearsinthetable.
6Doubleclickeachcellintherowtoenterorselecttheappropriateinformation.
ThePrimaryNameServerandSecondaryNameServ erfieldsrefertoDNSservice.YoumustentertheIP
addressofaDNSserverfor
hostnametoIPaddressresolution.
7ClickCommittosavetherule.
8IfDHCPservicehasnotbeenenabled,enableDHCPservice.
See“StartorStopvShieldEdgeServices”onpage 56.
Manage VPN Service
vShieldEdgemodulessupportsitetositeIPSecVPNbetweenavShieldEdgeandremotesites.
Figure 10-1. vShield Edge Providing VPN Access from a Remote Site to a Secured Port Group
Atthistime,vShieldEdgesupportspresharedkeymode,IPunicasttraffic,andnodynamicroutingprotocol
betweenthevShieldEdgeandremoteVPNrouters.BehindeachremoteVPNrouter,youcanconfigure
multiplesubnetstoconnecttotheinternalnetworkbehindavShieldEdgethroughIPSectunnels.These
subnetsandtheinternalnetworkbehindavShieldEdgemusthavenonoverlappingaddressranges.
YoucandeployavShieldEdgeagentbehindaNATdevice.Inthisdeployment,theNATdevicetranslatesthe
VPN
addressofavShieldEdgeintoapubliclyaccessibleaddressfacingtheInternet.RemoteVPNroutersuse
thispublicaddresstoaccessthevShieldEdge.
RemoteVPNrouterscanbelocatedbehindaNATdeviceaswell.YoumustprovideboththeVPNnative
addressandtheNATpublicaddress
tosetupthetunnel.
Onbothends,staticonetooneNATisrequiredfortheVPNaddress.
Zobrazit stránku 52
1 2 ... 48 49 50 51 52 53 54 55 56 57 58 ... 161 162

Komentáře k této Příručce

Žádné komentáře