NETGEAR FVS124G Configuration Manual page 29

Authentication Algorithm: The authentication algorithm must match the hash algorithm configured in VPN Tracker
(Advanced > Phase 1 > Hash Algorithms). Do not select more hash algorithms in VPN Tracker than the one selected on
the device.
Authentication Method: Unless you already have a Public-Key Infrastructure (PKI) in place for your users, you will
probably want to start out using pre-shared key (i.e. password-based) authentication. The method must match Basic >
Authentication in VPN Tracker.
Pre-shared key: This is the password for the VPN connection, and corresponds to the same setting in VPN Tracker
(Basic > Authentication). This password is shared among all users. Make sure to choose a strong password here that is
long enough and contains a mix of letters and numbers (but be aware that your Mac and your NETGEAR may not use the
same character encoding, so try to avoid accented characters).
Diffie-Hellman (DH) Group: The Diffie-Hellman (DH) group defined here must match the group selected for phase 1 in
VPN Tracker (Advanced > Phase 1 > Diffie-Hellman). Using a longer key (= higher number) is more secure, but may also
be slower.
SA Life Time: The IKE SA lifetime indicates when the phase 1 of the connection needs to be re-established. The lifetime
must match the lifetime for phase 1 in VPN Tracker (Advanced > Phase 1 > Lifetime). A value of 3600 sec (1 hour) or
more is generally a good choice.
Note While is possible to set more than one encryption
algorithm in VPN Tracker (as long as the one actually
used by the device is among them), setting more than
two or three algorithms (or algorithms not known to
the device) may cause the connection to fail.
29