1. Manuals
  2. Brands
  3. Nortel Manuals
  4. Gateway
  5. BSG8ew 1.0
  6. Configuration manual

Users Configuration; Users Configuration Navigation; User Database Configuration Parameters - Nortel BSG8ew 1.0 Configuration Manual

Business services gateway
Hide thumbs
Table of Contents

Advertisement

Variable
Authentication
IPSec Mode
Preferred Forward Secrecy
Life Time
Life Time Value
Anti Replay

Users configuration

This section provides configuration information for the client tunnel.

Users configuration navigation

User database configuration parameters (page 171)
IP address pool configuration parameters (page 172)
VPN client termination configuration parameters (page 172)

User database configuration parameters

The following section describes the parameters for the configuration of users located at
Configuration, VPN, Users, User Database tab
Value
Select the preferred authentication method.
Select None to indicates no authentication method is required.
Select HMAC-MAC5, the message authentication code is calculated using
the MD5 cryptographic hash function. This cryptographic hash function
has some additional security properties with a 128-bit hash value, which is
commonly used to check the integrity of files.
Select HMAC-SHA1, the message authentication code is calculated using
the SHA1 algorithm. This cryptographic hash function computes a
condensed digital representation to a high degree of probability.
Select the IPSec mode.
Select Tunnel, IPSec encrypts the IP header and the Payload.
Select Transport, IPSec encrypts only the Payload.
Select the Preferred Forward Secrecy (PFS). Select one of the following
options:
Select None – IKE does not use any PFS.
PFS Group 1 – IKE uses a 768-bit Diffie-Hellman Prime modules
group for performing the new Diffie-Hellman exchange.
PFS Group 2 – IKE uses a 1024-bit Diffie-Hellman Prime modules
group for performing the new Diffie-Hellman exchange.
PFS Group 5 – IKE uses a 1536-bit Diffie-Hellman Prime modules
group for performing the new Diffie-Hellman exchange.
Select the lifetime unit. It can be seconds, minutes, or hours.
The default value is seconds.
Type the lifetime value.
The default value is 800 seconds.
Displays the anti-replay status for the IKE pre-shared secret policy.
Displays one of the following:
ENABLE - anti-replay functionality is activated.
DISABLE - anti-replay functionality is deactivated.
The default value is ENABLE.
.
VPN advanced configuration
Configuration Guide
171

Advertisement

Table of Contents
loading

Related Manuals for Nortel BSG8ew 1.0

Related Content for Nortel BSG8ew 1.0

This manual is also suitable for:

Bsg12ew 1.0Bsg12tw 1.0Bsg12aw 1.0

Table of Contents