Replicate the VPN Gateway element from primary Engine to secondary Engine to allow both engines to share the same VPN gateway configuration. This enables both engines to be used in
existing policy-based VPNs.
For more details about the product and how to configure features, click Help or
press F1.
Important: For information about using Engine High Availability (HA) with Policy-Based VPN in cloud environments, refer to Knowledge Base Article
000012534.
Steps
-
Navigate to the Secondary Engine VPN settings:
- Select
Engine.
- Browse to .
- Right-click the engine, then select Edit <element type>.
- In the navigation pane on the left, select VPN.
-
In the Additional Gateways section:
- Click Replicate. The Create New Replica Gateway dialog box is displayed.
- (Optional) Enter a name for the replica gateway in the Replica Gateway Name field.
Note: If you do not specify a name, SMC automatically assigns the
name Replica of <Linked Gateway Name> to the replica gateway.
- Click Select next to the Link Gateway field to select a Primary Engine gateway. The Select Element
dialog box is displayed.
- Select the Primary Engine gateway element, then click Select.
- Click OK.
Note: A replica VPN gateway of the Primary Engine is created for the Secondary Engine and added to the Additional Gateways section.
-
Navigate to .
-
Do the following:
- Click the cell under the Local Address column, then select the local address of the Primary Engine.
- (Optional) Click the cell under the Name column to add a name for the linked endpoint for easier identification.
Note: Do this only after you select
the local address.
- Repeat steps a and b to link all endpoints.
Note: The cells under the Linked Endpoint, Linked Contact Address, and Linked Phase-1 ID columns are
automatically populated.
-
Click the Save button.