Cisco RV180 Administrator's Manual page 126

Hide thumbs Also See for RV180:

Administration manual (187 pages)

Manual (14 pages)

Datasheet (5 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

page of 183

/ 183
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring Virtual Private Networks (VPNs) and Security

Configuring Advanced VPN Parameters

STEP 6

Cisco RV180/RV180W Administration Guide

in the upstream and downstream traffic flows, the SA may expire

asymmetrically. For example, if the downstream traffic is very high, the

lifebyte for a download stream may expire frequently. The lifebyte of the

upload stream may not expire as frequently. It is recommended that the

values be reasonably set, to reduce the difference in expiry frequencies

of the SAs; otherwise the system may eventually run out of resources as

a result of this asymmetry. The lifebyte specifications are generally

recommended for advanced users only.

•

Encryption Algorithm—Select the algorithm used to encrypt the data.

•

Integrity Algorithm—Select the algorithm used to verify the integrity of the

data.

•

PFS Key Group—Check the Enable box to enable Perfect Forward Secrecy

(PFS) to improve security. While slower, this protocol helps to prevent

eavesdroppers by ensuring that a Diffie-Hellman exchange is performed for

every phase-2 negotiation.

•

Select IKE Policy—Choose the IKE policy that will define the

characteristics of phase 1 of the negotiation. To add an IKE policy to the list,

click the IKE Policies link. See

page

109.

Click Save to save your settings, or click Cancel to reload the page with the

current settings. Click Back to return to the VPN > IPsec > Advanced VPN Setup

page.

Manual Policy Example

Creating a VPN tunnel between two routers:

Router 1: WAN1=10.0.0.1 LAN=192.168.1.1 Subnet=255.255.255.0

Policy Name: manualVPN

Policy Type: Manual Policy

Local Gateway: WAN1

Remote Endpoint: 10.0.0.2

Local IP: Subnet 192.168.1.0 255.255.255.0

Remote IP: Subnet 192.168.2.0 255.255.255.0

SPI-Incoming: 0x1111

Encryption Algorithm: DES

Key-In: 11112222

Key-Out: 33334444

SPI-Outgoing: 0x2222

Integrity Algorithm: MD5

Key-In: 1122334444332211

Key-Out: 5566778888776655

Router 2: WAN1=10.0.0.2 LAN=192.168.2.1 Subnet=255.255.255.0

Configuring Advanced VPN Parameters,

117

Table of Contents

This manual is also suitable for:

Rvrv180w

Cisco RV180 Administrator's Manual page 126

Related Manuals for Cisco RV180

Related Products for Cisco RV180

This manual is also suitable for:

Table of Contents