SANGFOR IAM v2.1 User Manual
285
The [Local Subnet List] stands for a kind of “declaration”. The subnets defined here will be
regarded as VPN segments by the VPN device and the client-end software. All the data going
through the VPN device or software will be encapsulated and transmitted through the VPN tunnels.
Therefore, you need to configure the [Static Route], in addition to adding the related subnets into
the [Local Subnet List]], so as to enable the intercommunication among these subnets.
13.3.9.
Tunnel Route
SANGFOR IAM gateway device offers the powerful VPN tunnel route configuration function.
You can configure route for the VPN tunnels, to achieve interconnection among different VPNs
(software/hardware) and establish a true web-like VPN network.
The [Tunnel Route] default configuration page is as shown below:
For example, the Shenzhen headquarters (192.168.1.x/24) needs to establish VPN connection with
its branches Shanghai (172.16.1.x/24) and Guangzhou (10.1.1.x/24); however, there is no VPN
tunnel between the Shanghai branch and Guangzhou branch. To achieve interconnection between
the two, we are to configure a tunnel route. The detailed configuration is as shown below:
Step 1: Configure [Tunnel Route] on the Shanghai branch‟s IAM gateway device. Check [Enable
Tunnel Route] and click the <New> button to add a route directing to the Guangzhou branch, as