Configuring a UTM as Satellite in the VPN configuration – Adaptive Secure Connect (ASC) – in the Securepoint Portal
Last adaptation to the version: 2.9
New:
notemptyThis article refers to a Beta version
-
Einleitung
Mit einer Satelliten UTM kann automatisch eine sichere Verbindung zwischen dem Core dieser VPN-Konfiguration und der ausgewählten UTM hergestellt werden.
Dieser Artikel beschreibt, wie eine im Securepoint Portal Unified Security Console vorhandene UTM als Satellite für eine VPN-Konfiguration (ASC) konfiguriert werden kann.
Soll hingegen ein unverwaltetes Gerät als Satellit genutzt werden, so wird dies im Wiki-Artikel Unverwaltete Satellit-Geräte konfigurieren beschrieben.
Prerequisite
notempty
VPN configurations in the USC require a UTM v14.0 or higher
Add Satellite-UTM
| To add a UTM as a Satellite UTM, click on the Satellite / Roadwarrior button for an active, connected Core UTM. A dialog window opens in which the new Satellite UTM is configured. | |||
| Caption | Value | Description |  |
|---|---|---|---|
| Type | Staellite (UTM) | Satellite is selected as the type | |
| UTM | TTT-Point AG V | Selection of the UTM that is to connect to the core UTM via VPN. The configurations are assigned to the UTMs as soon as this is published. Only UTMs that are connected to the portal and online are available for selection. UTMs that are connected to the portal but are offline or whose version is not compatible are listed in the Not available list section. | |
| Alias Mandatory field |
LG2 | Alias for the Satellite UTM to make it easier to assign generated objects to this UTM. | |
| The Add button only becomes active once all entries have been completed and this UTM is then added above them. | |||
| This configuration must then be transferred using the Publish button. | |||
Edit Satellite-UTM
| An active, connected Satellite UTM can be edited using the button. | |||
| Caption | Value | Description |  |
|---|---|---|---|
| Type | Staellite (UTM) | The type cannot be +changed with a Satellite UTM. | |
| UTM | TTT-Point AG II | The UTM used as the satellite UTM cannot be changed. | |
| Alias Mandatory field |
LG2 | Assign an alias for the Satellite UTM to make it easier to assign generated objects on this UTM. | |
| This configuration must then be transferred using the Publish button. | |||
Add Satellite-UTM rule
| Caption | Value | Description |  | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Richtung | Satellite-UTM Core-UTM | Shows the direction of the packet filter rule, i.e. the source to the destination. The direction is changed with the change button . | ||||||||||||||
| Source | Please select a network object | Selection of an existing network object. Existing network groups and network objects are listed. | ||||||||||||||
If no suitable network object is available, a new one can be created using the Add button .
| ||||||||||||||||
| Target | Please select a network object | Selection of an existing network object. Existing network groups and network objects are listed. | ||||||||||||||
If no suitable network object is available, a new one can be created using the Add button .
| ||||||||||||||||
| Service | Select a service | Selection of an existing service. Existing service groups and services are listed. | ||||||||||||||
If no suitable service is available, a new one can be created using the Add button .
| ||||||||||||||||