It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

CC VPN GTI Editor User Interface

  • Last updated on

The VPN GTI Editor page provides an easy way to create VPN site-to-site tunnels and displays VPN tunnels that are created on a graphical interface. To access the VPN GTI Editor page, go to CONFIGURATION > Configuration Tree > Multi-Range > Global Settings > VPN GTI Editor.

The page is divided into two main sections:

  • Details Section
  • Canvas Section

Details Section

The upper section of the VPN GTI Editor page displays all VPN groups, VPN services, WAN Optimization, and VPN root certificates that have been configured on the Control Center.

Details-Window.png

All information displayed in the Details section is arranged by tabs:

Groups Tab
  • Group – Name of the VPN group. An icon indicates how the VPN tunnels are configured and placed in the canvas map.

    Icon Description
    Icon-Service-Placement-Meshed-User.png Meshed topology.
    Icon-Meshed.png Meshed topology with user-defined placement.
    Icon-Service-Placement-Normal.png Not meshed. Hub- or user-defined placement.
    Icon-Service-Placement-Hub.png Hub topology without user-defined placement.
    Icon-Service-Placement-User.png User-defined topology. If active, you can drag and drop the according VPN service inside the canvas map. This can be helpful if multiple VPN tunnels overlap when placed automatically.
  • Services – Number of services that are part of this group.
  • Tunnels – Number of tunnels within the group.
  • Type – Group topology.
  • Transport – Transport protocol used.
  • Encryption – Encryption method used.
  • Authentication – Packet header authentication used/required.
  • Accepted Identification – Identification method used/required.
  • Hide in NG Earth – Visible/hidden in Barracuda Earth.
Services Tab
  • Server  Name of the virtual server this VPN service belongs to.

       
    No icon The VPN service was not added to the GTI or is not part of any group.
    Icon-Server-grey.png External VPN service.
    Icon-Server-blue.png The service is added to the GTI.

    You can set a custom icon for a VPN service by double-clicking the corresponding service. Clicking the Icon hyperlink allows you to select a custom icon for the service.

  • #Groups – Number of groups this VPN service is used in.
  • Groups – Name of groups this VPN service is used in.
  • Range – Range this VPN service is used in.
  • Cluster – Cluster this VPN service is used in. 
  • Service – VPN service name.
  • Internal Name – Internal service name.
WanOpt Tab

This tab contains the Wan Optimization policies. For further details on how to configure WanOpt, see How to Configure WAN Optimization Policies.

Root Certificates Tab

This tab contains the VPN root certificates that have been configured on the Control Center. For further details on how to configure VPN root certificates, see How to Set Up Barracuda VPN CA VPN Certificates.

Canvas Section

The lower section of the VPN GTI Editor page displays each CloudGen Firewall that has been configured in the VPN group. You can create VPN tunnels by dragging a system to its peer.

Canvas.png

After creating VPN tunnels, you can view the following information about the tunnels: 

  • VPN Service Name – The name is formatted as <server-name> service-name/cluster/range.
  • Configured Server IP Addresses – Optionally, explicit service IPs.
  • Status – The status of the VPN tunnel is indicated by the following colors:
    • black – Enabled tunnel
    • grey – Disabled tunnel
  • Protocol – The protocol of the VPN tunnel is indicated by the following lines:
    • solid line – TINA tunnel
    • dotted line – IPsec tunnel
  • Direction – The direction of the tunnel is indicated by an arrow to the designated tunnel endpoints. The direction of the arrows also indicate the tunnel type:
    • Tunnels flagged with one arrow tip – Active-passive tunnel (the arrow points to the passive tunnel endpoint)
    • Tunnels flagged with arrow tips on both ends – Active-active tunnel