Packeteer Home Page Choose a PacketGuide version   

 Feedback

 Search

 Index

 Contents

What's New?

 Home

 PolicyCenter Home

 Overviews

 Recommendations

 Tasks
    Setup
    Classification
    Traffic Tree Mgmt.
    Monitoring
    Partitions
    Policies
    Graphs & Reports
    Measurement
    Event Notification
    Response Time
    Xpress
      Configure Xpress
      Migrate to Xpress
      Define Xpress-IP
      Select Tunnel Mode
      Configure Global Settings
      Configure Password
      Enable Compression
      Enable Packing
      Enable Acceleration
      Monitor Xpress Tunnels
      Compression Summary
      Acceleration Summary
      Create Static Tunnel
      Create SkyX Tunnel
      Convert to Static
      Delete Tunnel
      Modify Tunnel Settings
    Administration
    Customer Portal
    Adaptive Response
    Direct Standby
    Watch Mode
    Auto-deployment
    PolicyCenter Units
    PolicyCenter Config.
    PolicyCenter Admin.

 Reference

 Product Information
   Documents



 

Configure a Tunnel Password

For security purposes, you should configure a community password for Xpress tunnels. This authentication mechanism is used to determine whether tunnel partners can be "trusted" for purposes of exchanging host updates.  When tunnel partners have matching passwords, the tunnels will be in secure mode and will exchange host updates.

1. Click the xpress tab.

2. Click global tunnel settings. The Edit Global Tunnel Settings window appears. screen show screen

3. In the Password field, type the tunnel password. Passwords can be up to nine characters long and are case sensitive. They can consist of a combination of letters, numbers, and all special characters.

4. In the Retyped Password field, type the password again.

5. Click OK.

Notes:

  • After a new tunnel password is set, any existing tunnels will be reset (closed). Static tunnels will re-initialize themselves and come back up. Dynamic tunnels will re-establish themselves according to the normal process (for example, a tunnel will automatically form when flows are destined for hosts on the other side of a PacketShaper).
  • If you forget the tunnel password, you can assign a new password without having to know the old one.
  • To display the currently configured password, use the tunnel summary -pw CLI command in touch mode.
  • If passwords aren't configured on partner PacketShapers and discovery is off, a tunnel will form, but no data will be sent in the tunnel (that is, data will not be compressed, packed, or accelerated), unless remote hosts have been statically configured.
  • When discovery is on, but passwords aren't configured or don't match the partner, a tunnel will form, remote host discovery will work, and data will be sent through the tunnel (that is, data will be compressed, packed, and/or accelerated). However, when passwords aren't correctly configured, local host discovery does not operate and statically configured local hosts are ignored. While tunnel features still work, host discovery is not as fast and efficient. In this situation, the tunnel is not operating in secure mode. To check whether a tunnel is in secure mode, use the tunnel show <tunnel> command; if the output shows Secure Mode: Yes, the tunnel is in secure mode and can exchange host updates with the partner.

See also:

Configure Global Xpress Settings

 

PacketGuide™ for PacketWise® 8.1