Site Management

This is the management page for configuring SASE. Through Site Management, you can create Service Edges (NAC 6.0 Gateway, Hub) in the Cloud and configure Branches to connect to them.

Site Types

Sites can be created as either Hub type or Branch type.

Hub Type

A Hub site acts as an intermediary for IPsec tunnels with Branch sites and serves as a network access point.

• If there are multiple Hub sites, you can configure tunnels between the Hub sites.

Branch Type

The Branch type only routes traffic for the Branch site's network.

• When selecting a Parent Hub site, an IPsec tunnel can be configured to the Hub.

Site Connection Methods

• You can connect to the Hub by running IPsec on the NAC 6.0 Gateway.

• Integration between Hub sites in NAC 6.0 and dedicated IPsec devices (e.g., Cisco, Fortinet) is possible.

• If direct routing between the Hub and Branch is possible, you can connect via routing.

How to Configure a Site

1. Click System -> Site

2. Click Select Action -> Create

3. Enter basic information:

   • Enter the Site Name

   • Set the type (Hub, Branch)

   • Configure the infrastructure (Cloud, On-Premises)

     • For Cloud, you must configure Cloud Provider, Region, and VPC ID

     • Use a previously created Cloud Provider. If none exists, refer to How to create a Cloud Provider to create one.

     • Set the Region that matches the location.

     • Select the VPC ID to configure the site. When you select a VPC ID, the Network Address is automatically set to the VPC range.

     • For On-premises, manually set the IP range of the site in Network Address.

   • Select options to be used per site. [ NAC 6.0-IPsec, NAC 6.0-Client, Routing, Collector, URL Filter ]

Site Options

The available site options are NAC 6.0-Client, NAC 6.0-IPsec, Routing, Collector, URL Filter.

• Collector
• ZTNA-Client
• ZTNA-IPsec