1. Manuals
  2. Brands
  3. Billion Manuals
  4. Network Router
  5. BiPAC 8500/8520
  6. User manual

Billion BiPAC 8500/8520 User Manual page 115

Shdsl vpn firewall bridge/ router, shdsl.bis (vpn) firewall bridge/router
Hide thumbs
Table of Contents

Advertisement

more powerful but increase the latency.
o Diffie-Hellman Group: It is a public-key cryptography protocol that allows two
parties to establish a shared secret over an unsecured communication channel
(i.e. over the Internet). There are three modes, MODP 768-bit, MODP 1024-bit
and MODP 1536-bit. MODP stands for Modular Exponentiation Groups.
o Local ID:
o Remote ID:
o SA Lifetime: Specify the number of minutes that a Security Association (SA) will
stay active before a new encryption and an authentication key will be exchanged.
There are two kinds of SAs, IKE and IPSec. IKE negotiates and establishes SA on
behalf of IPSec, an IKE SA is used by IKE.
Note: A short SA time increases security by forcing two parties to update the keys. However,
every time the VPN tunnel re-negotiates, access through the tunnel will be temporarily
disconnected.
• PING to Keepalive: It is used to detect IPSec tunnel connection failure. Connection
failure is defined as abort or in NO response state. In such event Ping to Keepalive takes
proper action to ensure the connection quality of IPSec.
o PING to the IP: It can IP Ping the remote PC with the specified IP address and
issue alert when the connection fails. Once alter message is received, Router will
drop this tunnel connection. Re-establishing of this connection is required. Default
setting is 0.0.0.0 which disables the function.
o Interval: This sets the time interval of Pings to the IP function to monitor the
connection status. Default interval setting is 10 seconds. Time interval can be set
Chapter 4: Configuration
Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router
DES: Stands for Data Encryption Standard, it uses 56 bits encryption
method.
3DES: Stands for Triple Data Encryption Standard, it uses 168 (56*3) bits
encryption method.
AES: Stands for Advanced Encryption Standards, you can use 128, 192 or
256 bits encryption method.
Type: Specify a local ID type.
Content: Input ID information, like domain name www.ipsectest.com.
Type: Specify a Remote ID type.
Identifier:
Input
www.ipsectest.com.
Phase 1 (IKE): To issue an initial connection request for a new VPN tunnel.
The range can be from 5 to 15,000 minutes, and the default is 240 minutes.
Phase 2 (IPSec): To negotiate and establish a secure authentication. The
range can be from 5 to 15,000 minutes, and the default is 60 minutes.
remote
ID
information,
like
domain
name
111
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Billion BiPAC 8500/8520

Related Products for Billion BiPAC 8500/8520

This manual is also suitable for:

Bipac 8501/8521Bipac 8500Bipac 8520Bipac 8521Bipac 8501

Table of Contents

Save PDF