1. Manuals
  2. Brands
  3. Nortel Manuals
  4. Gateway
  5. BSG8ew 1.0
  6. Configuration manual

Nortel BSG8ew 1.0 Configuration Manual page 170

Business services gateway
Hide thumbs
Table of Contents

Advertisement

170
VPN advanced configuration
Variable
DH Group
Exchange
Life Time
Life Time Value
Peer Identity Type/Value
Local Identity Type/Value
IP Sec Phase 2 Proposal table
Protocol
Encryption
NN47928-500
NN47928-500
Value
Select the required Diffie-Hellman (DH) group. DH key exchange is used
to establish preshared keys.
Select Group 1 – IKE uses a 768-bit Diffie- Hellman Prime modules group
for performing the new Diffie-Hellman exchange.
Select Group 2 – IKE uses a 1024-bit Diffie- Hellman Prime modules
group for performing the new Diffie-Hellman exchange.
Select Group 5 – IKE uses a 1536-bit Diffie- Hellman Prime modules
group for performing the new Diffie-Hellman exchange.
Select the exchange mode.
Select Main for the highest level of Security.
Select Aggressive for speed.
The default value is Main.
Select the lifetime unit. It can be seconds, minutes, or hours.
Type the lifetime value.
Select the identity type to access the remote network. Select one of the
following:
IPV4 - IP address
FQDN - Fully Qualified Domain Name
EMAIL - email address of the user
KEYID - uniquely identifies the peer
Select the associated value from the list. The list contains the Remote
Identity values added on VPN Global Settings.
Select the identity type to access the local network. Select one of the
following:
IPV4 - IP address
FQDN - Fully Qualified Domain Name
EMAIL - email address of the user
KEYID - uniquely identifies the peer
Type the associated value.
Select the authentication protocol.
Select ESP, IPSec encrypts and authenticates.
Select AH, IPSec only authenticates.
Select the IPSec Encryption. Select one of the following options:
null – indicates no standard is used for IPsec encryption.
Data Encryption Standard (DES) – indicates a standard for encrypting
data that uses a 64 bit key to encrypt data, but only 56 bits are usable.
This standard is considered inadequate for data protection as this
standard do not match the speed of computer.
Triple Data Encryption Standard (3DES) – processes each block of
data using a different key each time resulting in a significantly more
secure message.
Advanced Encryption Standard (AES-128, AES-192, AES-256) – has
a fixed block size of 128 bits and a key size of 128, 192 or 256 bits.
Due to the fixed block size of 128 bits, AES operates on a 4x4 array of
bytes.

Advertisement

Table of Contents
loading

Related Manuals for Nortel BSG8ew 1.0

Related Products for Nortel BSG8ew 1.0

This manual is also suitable for:

Bsg12ew 1.0Bsg12tw 1.0Bsg12aw 1.0

Table of Contents