Creating the IPsec policy - Config mode

In the module Configuration > VPN > IPsec VPN > Encryption policy – Tunnels tab:

1. Select the IPsec policy that you wish to modify from the drop-down list (IPsec 01 in the example).
2. Click on the Mobile - Mobile users tab.
3. Click on Add.
4. Select New Config mode mobile policy.
   A configuration wizard starts.
5. In the Local ressources field, select the network that mobile users can access through the IPsec VPN tunnel (object Local_Network_Authorized_IPsec created earlier in the example).
6. In the Peer selection field, select the mobile profile created earlier (IKEv1_Mobile_Users in the example).
   Reminder: only one network can be selected. Network groups cannot be selected.
   
7. In the Remote networks field, select the network object created in the step Defining a network object that contains IP addresses assigned to mobile peers (Mobile_Users_Network in the example).
8. Click on Finish.
   
9. Click on Apply then confirm by clicking on Save.
10. Click on Yes, activate the policy.
    

The IPsec policy configured in Config mode is therefore: