NETGEAR FVL328 Reference Manual page 78

Prosafe high-speed vpn firewall

Hide thumbs Also See for FVL328:

Reference manual (32 pages)

Configuration manual (21 pages)

Faq (9 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

Table of Contents

Model FVL328 ProSafe High-Speed VPN Firewall Reference Manual

Table 6-1.

VPN Manual Policy Configuration Fields

Field

Authenticating Header

(AH) Configuration

SPI - Incoming

SPI - Outgoing

Enable Authentication

Authentication

Algorithm

Key - In

Key - Out

Encapsulated Security

Payload (ESP)

Configuration

SPI - Incoming

6-12

Description

AH specifies the authentication protocol for the VPN header. These settings

must match the remote VPN endpoint.

Note: The "Incoming" settings must match the "Outgoing" settings on the

remote VPN endpoint, and the "Outgoing" settings must match the "Incoming"

settings on the remote VPN endpoint.

Enter a Hex value (3 - 8 chars). Any value is acceptable, provided the remote

VPN endpoint has the same value in its "Outgoing SPI" field.

Enter a Hex value (3 - 8 chars). Any value is acceptable, provided the remote

VPN endpoint has the same value in its "Incoming SPI" field.

Use this check box to enable or disable AH. Authentication is often not used,

so you can leave the check box unselected.

If you enable AH, then select the authentication algorithm:

• MD5 – the default

• SHA1 – more secure

Enter the keys in the fields provided. For MD5, the keys should be 16

characters. For SHA-1, the keys should be 20 characters.

Enter the keys.

• For MD5, the keys should be 16 characters.

• For SHA-1, the keys should be 20 characters.

Any value is acceptable, provided the remote VPN endpoint has the same

value in its Authentication Algorithm "Key - Out" field.

Enter the keys in the fields provided.

• For MD5, the keys should be 16 characters.

• For SHA-1, the keys should be 20 characters.

Any value is acceptable, provided the remote VPN endpoint has the same

value in its Authentication Algorithm "Key - In" field.

ESP provides security for the payload (data) sent through the VPN tunnel.

Generally, you will want to enable both encryption and authentication. when

you use ESP. Two ESP modes are available:

• Plain ESP encryption

• ESP encryption with authentication

These settings must match the remote VPN endpoint.

Enter a Hex value (3 - 8 chars). Any value is acceptable, provided the remote

VPN endpoint has the same value in its "Outgoing SPI" field.

M-10144-01

Virtual Private Networking

Table of Contents

NETGEAR FVL328 Reference Manual page 78

Troubleshooting

Related Products for NETGEAR FVL328

NETGEAR FVL328 Reference Manual page 78

Troubleshooting

Related Manuals for NETGEAR FVL328

Related Products for NETGEAR FVL328

Table of Contents