1. Home
    2. /
  2. Manuals
    3. /
  3. Nokia
    4. /
  4. IP45
    5. /
  5. 56
Page 276 / 342 Scroll up to view Page 271 - 275
15
Working with VPNs
276
Nokia IP45 Security Platform User’s Guide v4.0
The Create self-signed certificate window opens.
5.
Complete the fields following the information provided in
“Certificate fields”
on page 276.
6.
Click Next.
It may take few minutes for the IP45 to generate the certificate. Once the certificate is
generated, the Done window opens with details of the certificate generated.
7.
Click Finish.
Note
The already installed certificate, if any will be re-written by the generated certificate. The
Certificate window now displays the information about the new certificate installed.
Table 58
Certificate fields
Field
Action
Country
Select your country name from the drop-down list.
Organization
Name
Type the name of your organization.
Page 277 / 342
VPN Certificates
Nokia IP45 Security Platform User’s Guide v4.0
277
Importing a Certificate
You can import a VPN certificate by using the GUI or the CLI.
Importing a Certificate by Using the GUI
To install a certificate by using the GUI, follow the procedure below:
To install a certificate by importing
1.
Choose VPN from the IP45 main menu and click Certificate.
The VPN Certificate page opens.
2.
Click Install Certificate.
The Certificate wizard opens.
3.
Click Import a security certificate in PKCS#12 format.
4.
Click Next.
The Import Certificate window opens.
5.
Click Browse to locate the file to import.
6.
Select the file and click Next.
Organizational
Unit
Type the name of your division.
Gateway
Name
Type the name of the gateway. This name appears on the
certificate and can be viewed by the remote users, inspecting the
certificate.
Default value: MAC address of the gateway.
Valid Until
Select the validity period from the drop-down list. Select the
Month, Date and Year.
Table 58
Certificate fields (
continued
)
Field
Action
Page 278 / 342
15
Working with VPNs
278
Nokia IP45 Security Platform User’s Guide v4.0
The Import Certificate Passphrase window opens.
7.
Type the passphrase that you received from the administrator.
8.
Click Next.
9.
The Done window opens with details of the certificate.
10.
Click Finish.
The Certificate page displays the new certificate details
, including the name of the CA that
issued the certificate, and the name of the gateway to which this certificate was issued.
Installing Certificates by Using the CLI
You can also download and install the VPN certificate by using the command line interface.
Use the following command to install the certificate on the device:
set vpn certificate <file name>
Installing VPN Certificates from SmartCenter
VPN certificates are used to authenticate a VPN connection established between Check Point
SmartCenter NG AI that uses Check Point Large Scale Manager and the dynamically configured
IP45 security platform that uses the DAIP.
You can upload the certificate created on the Check Point NG AI to the IP45 Satellite.
To upload VPN certificates and to create a dynamic VPN site by using Check
Point Smart LSM
1.
Choose Services from the main menu, and then choose Connect.
The Subscription Services wizard appears.
2.
Enter the IP address of the Check Point NG AI Management station.
The Connecting window opens.
3.
Enter the Gateway ID and Registration Key that are used while creating the IP45 Dynamic
Object on the LSM.
Page 279 / 342
VPN Certificates
Nokia IP45 Security Platform User’s Guide v4.0
279
4.
The Connecting window opens.
When the connection is complete, the list of services downloaded is displayed.
5.
Click Finish.
6.
Click the VPN Sites tab to view the Dynamic VPN tunnel created between your Nokia IP45
device and the Check Point NG AI management station.
Uninstalling the VPN Certificate
Follow the below procedure to uninstall VPN certificate from the Nokia IP45 security platform.
To uninstall a certificate from Nokia IP45
1.
Choose VPN from the IP45 main menu, and then choose Certificate.
The Certificate page opens.
2.
Click Uninstall Certificate to delete the certificate.
A confirmation message appears.
3.
Click OK.
Viewing VPN Tunnels
You can view a list of currently established VPN tunnels.
After you log on to the site, whenever your computer attempts to communicate with a computer
at the VPN site, a VPN tunnel is created. When you log off, all open tunnels connecting to a
VPN site are closed.
The active VPN Tunnels report now displays both the currently active phase-1 (IKE) and their
associated establish phase-2(IPSec) VPN tunnels. For each tunnel, the source and destination IP
addresses or address ranges are shown, as well as the selected security methods tunnel
establishment time.
To view VPN tunnels
1.
Choose Reports from the IP45 main menu.
The Event Log page opens.
2.
In the submenu, click VPN Tunnels.
The VPN Tunnels page opens with a list of open tunnels to VPN sites.
Table 59
VPN Tunnels includes the following columns
Page 280 / 342
15
Working with VPNs
280
Nokia IP45 Security Platform User’s Guide v4.0
You can refresh the table by refreshing the browser.
Table 59
VPN Tunnels
Column
Description
Type
Type of encryption used to secure the connection,
followed by the type of authentication used to verify
the user’s identity.
This information is presented in the following
format:
Encryption Type/ Authentication Type.
Source
Source of the connection
Destination
Destination of the connection
Security
VPN properties for Phase1 and Phase2 algorithms
Established
Time when the VPN Tunnel is established.
This information is presented in the following
format:
Hour:Minute:Second
Site
VPN site name.
Username
User logged on to the VPN site.
Encryption
Type
Type of encryption used to secure the connection,
followed by the type of authentication used to verify
the user’s identity.
This information is presented in the following
format:
Encryption Type/ Authentication Type.
Established
Time
Time when the VPN Tunnel is established.
This information is presented in the following
format:
Hour:Minute:Second.
VPN
Gateway
IP Address of the VPN Gateway to which the tunnel
is connected.

Rate

3.5 / 5 based on 2 votes.

Popular Nokia Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top