Creating a New Connection

First initiate a new connection. Then name the connection, define it as secure, and determine the identification and location of the other end of the eventual VPN tunnel.

Figure 122 shows the NetScreen-Remote Client Icon in the Task Bar page.

Figure 122: NetScreen-Remote Client Icon

Figure 123 shows the Security Policy Editor page.

Figure 123: Security Policy Editor

New Connection appears in the Network Security Policy list, as shown in Figure 124.

Figure 124: Configure Connection

Figure 125 shows the Configuring the New Connection page.

Figure 125: Configuring the New Connection

1. Double-click the NetScreen-Remote icon in the Windows taskbar (Figure 122). The Security Policy Editor screen appears (Figure 123).
2. Click the New Connection icon to create a new connection.
3. Give the new connection a unique name—for example, VPN to HQ.
4. In the Connection Security area (to the right of the Network Security Policy list), select Secure.
5. In the Remote Party Identity and Addressing area, select an identifier for the other party from the ID Type list, and enter the required information.
6. Choose either IP Address or IP Subnet. Other choices will not work.
7. Select the protocol you want to use for the Connection. The default is All.
   • All—This choice allows the connection to use any IP protocol.
   • TCP—Transmission Control Protocol, the protocol that controls data transfer on the Internet
   • UDP—User Datagram Protocol, a protocol within the TCP/IP protocol suite that provides very few error recovery services (for example, a lost packet is simply ignored) and is used primarily for broadcasting
   • ICMP—Internet Control Message Protocol, a protocol tightly integrated with the Internet Protocol (IP) that supports packets containing error, control, and informational messages related to network operations
   • GRE—Generic Routing Encapsulation, a protocol that encapsulates the packets of one kind of protocol within GRE packets, which can then be contained within the packets of another kind of protocol
8. If you are using tunnel mode to connect to a J-series router running JUNOS software, select Connect using Secure Gateway Tunnel.

   The Secure Gateway Tunnel ID Type and IP Address fields are enabled.

9. Select IP Address as an identifier for the other party from the ID Type list and enter the IP address. See Figure 125.