Datasheet
“main” (Installation and Administration) — 2004/6/25 — 13:29 — page 635 — #661
i
i
i
i
i
i
i
i
26
Security in the Network
Figure 26.5: YaST VPN Module -– Overview
If the connection should be set up and cleared dynamically when a net-
work interface without a default route is activated and deactivated, enter
%dynamic instead. The IP addresses of the relevant interface are then used.
If the server should act as a gateway and permit access to a network, ‘Func-
tion as Gateway’ should be activated. Then enter this network in the input
field, for example, 10.10.0.0/24. You can also select the required certifi-
cate here. The first certificate is preselected.
Note
Either the first Subject Alternative Name (if any) or the
Distinguished Name from the certificate is used in this sim-
plified Road Warrior configuration workflow.
Note
After you click ‘Next’, choose how the connection should be handled at
system start-up in the next dialog. A connection can either be “prepared”
or “ignored”. In the case of a prepared connection, the server waits for con-
nection inquiries from clients.
635SUSE LINUX Enterprise Server