VPN topologies

When you create a new VPN topology you must give it a unique name, specify a topology type, and select the IKE version. You can select from three types of topologies, each containing a group of VPN tunnels:

Point-to-point (PTP) topologies establish a VPN tunnel between two endpoints.
Hub and spoke topologies establish a group of VPN tunnels connecting a hub endpoint to a group of spoke endpoints.
Full mesh topologies establish a group of VPN tunnels among a set of endpoints.

There is no default pre-shared key for VPN authentication. You must define a pre-shared key manually or let the system generate it automatically. When choosing automatic, the Cloud-Delivered Firewall Management Center generates a pre-shared key and assigns it to all the nodes in the topology.