IPSec VPN lifetime on the firewall

Interfaces supported by IPSec VPN reference on the USG
IPSec can be applied to Layer 3 physical interfaces, VLANIF interfaces, Layer 2 interfaces, tunnel interfaces, subinterfaces, and dialer interfaces.
1. Apply an IPSec policy on a Layer 3 physical interface.
system-view //Access the system view.
interface interface-type interface-number //Access the physical interface.
ipsec policy policy-name [ auto-neg ] //Apply the IPSec policy.
2. Apply an IPSec policy on a Layer 2 physical interface.
system-view //Access the system view.
interface interface-type interface-number //Access the physical interface.
ipsec policy policy-name [ auto-neg ] //Apply the IPSec policy.
Note: Before you establish an IPSec tunnel on a Layer 2 interface, you must first configure the IP address of the VLAN on which the Layer 2 interface resides.
3. Apply an IPSec policy group to a tunnel interface.
system-view
interface tunnel tunnel-number //Access the tunnel interface view.
tunnel-protocol ipsec //Set the encapsulation type on the tunnel interface to IPSec.
ipsec policy policy-name //Apply the IPSec policy group to the tunnel interface.

Scroll to top