It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Barracuda Campus
Barracuda CloudGen Firewall
Overview Documentation Training Certification Materials

CC VPN GTI Editor User Interface

  • Last updated on

The VPN GTI Editor page provides an easy way to create VPN site-to-site tunnels and displays VPN tunnels that are created on a graphical interface. To access the VPN GTI Editor page, go to CONFIGURATION > Configuration Tree > Multi-Range > Global Settings > VPN GTI Editor.

The page is divided into two main sections:

  • Details Section
  • Canvas Section

Details Section

The upper section of the VPN GTI Editor page displays all VPN groups, VPN services, and VPN root certificates that have been configured on the Control Center.

gti_interface.png

All information displayed in the Details section is arranged by tabs:

Groups Tab

  • Group – Name of the VPN group. An icon indicates how the VPN tunnels are configured and placed in the canvas map.

    IconDescription
    Icon-Service-Placement-Meshed-User.png
    		Meshed topology.
    Icon-Meshed.png
    		Meshed topology with user-defined placement.
    Icon-Service-Placement-Normal.png
    		Not meshed. Hub- or user-defined placement.
    Icon-Service-Placement-Hub.png
    		Hub topology without user-defined placement.
    Icon-Service-Placement-User.png
    		User-defined topology. If active, you can drag and drop the according VPN service inside the canvas map. This can be helpful if multiple VPN tunnels overlap when placed automatically.
  • Services – Number of services that are part of this group.
  • Tunnels – Number of tunnels within the group.
  • Type – Group topology.
  • Transport – Transport protocol used.
  • Encryption – Encryption method used.
  • Authentication – Packet header authentication used/required.
  • Accepted Identification – Identification method used/required.
Services Tab

  • Server  Name of the virtual server this VPN service belongs to.



    No iconThe VPN service was not added to the GTI or is not part of any group.
    Icon-Server-grey.png
    		External VPN service.
    Icon-Server-blue.png
    		The service is added to the GTI.

    You can set a custom icon for a VPN service by double-clicking the corresponding service. Clicking the Icon hyperlink allows you to select a custom icon for the service.

  • Groups – Name of groups this VPN service is used in.
  • Range – Range this VPN service is used in.
  • Cluster – Cluster this VPN service is used in. 
  • Service – VPN service name.
  • Internal Name – Internal service name.
CA Certificates Tab

This tab contains the VPN root certificates that have been configured on the Control Center. For further details on how to configure VPN root certificates, see How to Set Up Barracuda VPN CA VPN Certificates.

Canvas Section

The lower section of the VPN GTI Editor page displays each CloudGen Firewall that has been configured in the VPN group. You can create VPN tunnels by dragging a system to its peer.

Canvas.png

After creating VPN tunnels, you can view the following information about the tunnels: 

  • VPN Service Name – The name is formatted as <server-name> service-name/cluster/range.
  • Configured Server IP Addresses – Optionally, explicit service IPs.
  • Status – The status of the VPN tunnel is indicated by the following colors:
    • black – Enabled tunnel
    • grey – Disabled tunnel
  • Protocol – The protocol of the VPN tunnel is indicated by the following lines:
    • solid line – TINA tunnel
    • dotted line – IPsec tunnel
  • Direction – The direction of the tunnel is indicated by an arrow to the designated tunnel endpoints. The direction of the arrows also indicate the tunnel type:
    • Tunnels flagged with one arrow tip – Active-passive tunnel (the arrow points to the passive tunnel endpoint)
    • Tunnels flagged with arrow tips on both ends – Active-active tunnel