Symantec 360R - Security Gateway SGS Administration Manual page 201
Gateway security 300 series
Hide thumbs
Also See for 360R - Security Gateway SGS:
- Installation manual (66 pages) ,
- Quick start card (2 pages)
Table of Contents
Advertisement
Table C-29
VPN policies field descriptions (Continued)
Section
Field
SA Lifetime
Data Volume
Limit
Inactivity Time-
out
Perfect Forward
Secrecy
Description
Time, in minutes, before phase 2 renegotiation of
new encryption and authentication keys for the
tunnel.
The default value is 480 minutes. The maximum
value is 2,147,483,647 minutes.
Maximum number of kilobytes allowed through a
tunnel before a rekey is required.
The default value is 2100000 KB (2050 MB). The
maximum value is 4200000 KB (4101 MB).
Number of minutes a tunnel can be inactive before
it is re-keyed.
Type 0 for no timeout.
PFS provides additional protection from attackers
trying to guess the current ISKAMP key. Not all
clients and security gateways are compatible with
Perfect Forward Secrecy.
Options include:
DH Group 1
■
DH Group 2
■
DH Group 5
■
Field descriptions
201
VPN field descriptions
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
