Manual BOVPN Configuration Examples
You can configure a branch office VPN (BOVPN) between two Fireboxes or between a Firebox and a third-party VPN gateway that supports IPSec standards.
Firebox VPN Configuration Examples
These examples show how to set up a BOVPN between two Fireboxes and how to route different types of traffic through the tunnel.
- Set up a VPN Between Two Fireware Devices (WSM)
- Set up a VPN Between Two Fireware Devices (Web UI)
- Use a Branch Office VPN for Failover from a Leased Line (BGP)
- Use a Branch Office VPN for Failover from a Leased Line (OSPF)
- Configure Manual Branch Office VPN Tunnel Switching
- Multicast Routing Through a BOVPN Tunnel
- Example of Broadcast Routing Through a BOVPN Tunnel
- Logging Through a BOVPN Tunnel
- Allow Mobile VPN with SSL Users to use Resources Through a BOVPN Tunnel
Third-Party VPN Configuration Examples
You can set up a BOVPN between a Firebox and any other device that supports the same settings. You must configure both VPN gateway endpoints with the same VPN settings.
IPSec replay detection is enabled in Firebox branch office VPNs by default, and you cannot see or change this setting. To set up a VPN between a Firebox and a third-party device, VPN replay detection must also be enabled on the third-party device.
For reference, we provide several integration guides that demonstrate how to set up a manual BOVPN between a Firebox and a third-party device.
- Set up a BOVPN from a Firebox to a Cisco ASA device
- Set up a BOVPN from a Firebox to a Cisco ISR device
- Set up a BOVPN from a Firebox to a Dell SonicWALL device
- Set up a BOVPN from a Firebox to a Fortinet FortiGate device
- Set up a BOVPN from a Firebox to a Sophos device
For additional BOVPN integration guides, go to Fireware Integration Guides.
You can set up a BOVPN between a Firebox and devices not documented in Fireware Help if the remote gateway endpoint is configured to use compatible settings.