ProSafe 802.11g Wireless VPN Firewall FVG318 Reference Manual
Table 5-1. Parameters recommended by the VPNC and used in the VPN Wizard
Parameter
Authentication Protocol
Diffie-Hellman (DH) Group
Key Life
IKE Life Time
NETBIOS
•
What level of IPSec VPN encryption will you use?
–
DE – The Data Encryption Standard (DES) processes input data that is 64 bits wide,
encrypting these values using a 56 bit key. Faster but less secure than 3DES.
–
3DES – (Triple DES) achieves a higher level of security by encrypting the data three times
using DES with three different, unrelated keys.
–
AES
•
What level of authentication will you use?
–
MDS – 128 bits, faster but less secure.
–
SHA-1 – 160 bits, slower but more secure.
Note: NETGEAR publishes additional interoperability scenarios with various
gateway and client software products.
VPN Tunnel Configuration
There are two tunnel configurations and three ways to configure them:
•
Use the VPN Wizard to configure a VPN tunnel (recommended for most situations):
–
See
"Setting Up a Client-to-Gateway VPN Configuration" on page
–
See
"Setting Up a Gateway-to-Gateway VPN Configuration" on page
•
See
Chapter 6, "Advanced Virtual Private
defaults (see
Table 5-1
5-4
Factory Default
SHA-1
Group 2 (1024 bit)
8 hours
24 hours
Enabled
Networking" when the VPN Wizard and its VPNC
on
page
5-4) are not appropriate for your special circumstances.
v1.0, September 2007
5-5.
5-19.
Basic Virtual Private Networking