Configuration overview

The configuration consists of these general steps.

Note: This configuration is done primarily in the Management Client component of the SMC, but some tasks require configuration information from the Private Access management portal. To complete these tasks, you must have access to the Private Access management portal.
  1. In the Private Access management portal, retrieve tunnel information and review the supported IKE and IPsec parameters for Private Access.
  2. In the Management Client component of the Forcepoint NGFW Security Management Center (SMC), define the VPN tunnel and configure the IKE and IPsec parameters for the NGFW Engine.
  3. In the Management Client component of the SMC, configure a policy-based VPN.
  4. In the Management Client component of the SMC, configure rules for policy-based VPN traffic.
    1. Add access rules to allow the traffic that you want to accept from both VPN tunnels.
    2. Review and modify the NAT rules if necessary.