Wizards > VPN Wizard
835
SonicOS Enhanced 4.0 Administrator Guide
If the object or group you want has not been created yet, select Create Object or Create
Group. Create the new object or group in the dialog box that pops up. Then select the new
object or group.
For this example, select LAN Subnets.
–
Destination Networks: Select the network resources on the destination end of the
VPN Tunnel. If the object or group does not exist, select Create new Address Object
or Create new Address Group.
For example:
a. Select Create new Address Group.
b. In the Name field, enter “LAN Group”.
c. In the list on the left, select LAN Subnets and click the -> button.
d. Click OK to create the group and return to the Network Selection page.
e. In the Destination Networks field, select the newly created group.
Step 7 Click Next.
Step 8 In the IKE Security Settings page, select the security settings for IKE Phase 2 negotiations
and for the VPN tunnel. You can use the default settings.
–
DH Group: The Diffie-Hellman (DH) group are the group of numbers used to create the
key pair. Each subsequent group uses larger numbers to start with. You can choose
Group 1, Group 2, or Group 5. The VPN Uses this during IKE negotiation to create the
key pair.