Ike; Ike Policy - TP-Link TL-ER604W User Manual

Safestream wireless n gigabit broadband vpn router

Hide thumbs Also See for TL-ER604W:

User manual (159 pages)

Datasheet (4 pages)

Quick install manual (2 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

page of 217

/ 217
Contents
Table of Contents
Bookmarks

Table of Contents

cause the private data to be exposed to all the users on the Internet. The VPN (Virtual Private Network)

technology is developed and used to establish the private network through the public network, which

can guarantee a secured data exchange.

VPN adopts the tunneling technology to establish a private connection between two endpoints. It is a

connection secured by encrypting the data and using point-to-point authentication. The following

diagram is a typical VPN topology.

Figure 3-61 VPN – Network Topology

As the packets are encapsulated and de-encapsulated in the Router, the tunneling topology

implemented by encapsulating packets is transparent to users. The tunneling protocols supported by

TL-ER604W contain Layer 3 IPsec and Layer 2 L2TP/PPTP.

3.6.1 IKE

In the IPsec VPN, to ensure a secure communication, the two peers should encapsulate and

de-encapsulate the packets using the information both known. Therefore the two peers need to

negotiate a security key for communication with IKE (Internet Key Exchange) protocols.

Actually IKE is a hybrid protocol based on three underlying security protocols, ISAKMP (Internet

Security Association and Key Management Protocol), Oakley Key Determination Protocol, and

SKEME Security Key Exchange Protocol. ISAKMP provides a framework for Key Exchange and SA

(Security Association) negotiation. Oakley describes a series of key exchange modes. SKEME

describes another key exchange mode different from those described by Oakley.

IKE consists of two phases. Phase 1 is used to negotiate the parameters, key exchange algorithm and

encryption to establish an ISAKMP SA for securely exchanging more information in Phase 2. During

phase 2, the IKE peers use the ISAKMP SA established in Phase 1 to negotiate the parameters for

security protocols in IPsec and create IPsec SA to secure the transmission data.

3.6.1.1

IKE Policy

On this page you can configure the related parameters for IKE negotiation.

Choose the menu VPN→IKE→IKE Policy to load the following page.

-90-

Table of Contents

Show Quick Links

Quick Links:
System Mode
Network
Wan

Hide quick links:

Chapters

Table of Contents

Ike; Ike Policy - TP-Link TL-ER604W User Manual

3.6.1 IKE

IKE Policy

Hide quick links:

Chapters

Related Manuals for TP-Link TL-ER604W

Related Content for TP-Link TL-ER604W

Table of Contents