Belkin N300 User Manual page 94

High performance wireless n300 vpn

Hide thumbs Also See for N300:

User manual (50 pages)

Specifications (2 pages)

User manual (50 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

page of 136

/ 136
Contents
Table of Contents
Bookmarks

Table of Contents

VPN

SA (Security Association)

IKE (Phase 1) Proposal

Exchange

DH Group

Encryption

Authentication

Life Time

IPSec (Phase 2) Proposal

Protocol

Encryption

Authentication

Perfect Forward Secrecy

DH Group

Life Time

Select Main Mode or Aggressive Mode for IKE Phase 1 negotiation.

• Main Mode: Select this option to configure the standard negotiation parameters

for IKE Phase 1 of the VPN Tunnel. (Recommended Setting)

• Aggressive Mode: Select this option to configure IKE Phase 1 of the VPN Tunnel to carry

out negotiation in a shorter amount of time. (Not Recommended - Less Secure)

Select a DH Group from the drop-down menu (Group 1, Group2, Group5 and Group14). As the DH

Group number increases, the higher the level of encryption implemented for IKE Phase 1.

F9K1004 supports DES, 3DES, AES128, AES192, AES256 encryption methods for traffic through the VPN.

F9K1004 supports SHA1, MD5 methods for authentication.

Enter the number of seconds for the IKE Lifetime. The period of time to pass before establishing a

new IKE security association (SA) with the remote endpoint. The default value is 28800.

Select ESP (Encapsulating Security Payload) or AH (Authentication Header) for traffic through the VPN.

• AH (Authentication Header) to provide connectionless integrity and data origin

authentication for IP datagrams and to provide protection against replay attacks.

• ESP (Encapsulating Security Payload) to provide confidentiality, data origin authentication, connectionless

integrity, an anti-replay service (a form of partial sequence integrity), and limited traffic flow confidentiality.

F9K1004 supports DES, 3DES, AES128, AES192, AES256 encryption methods for traffic through the VPN.

F9K1004 supports SHA1, MD5 methods for authentication.

Select Enable or Disable to enable or disable PFS (Perfect Forward Secrecy). PFS is an additional security protocol.

Select a PFS DH Group from the drop-down menu (Group 1, Group2, Group5, Group14). As the

DH Group number increases, the higher the level of encryption implemented for PFS.

Enter the number of seconds for the IPSec Lifetime. The period of time to pass before establishing a

new IPSec security association (SA) with the remote endpoint. The default value is 28800.

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

N300 vpn F9k1004

Belkin N300 User Manual page 94

Hide quick links:

Related Manuals for Belkin N300

Related Products for Belkin N300

This manual is also suitable for:

Table of Contents