Table of Contents
Advertisement
Xiamen Caimore Communication Technology Co.,Ltd
2 F, 37#, Wanghai Road, Software Park 2, Xiamen,China (361009)
Tunnel Mode:usually used when establishing tunnel between two Routers
Passthrough Mode:allow IPSEC protocol passthrough.
Local endpoint type:
Network-To-Network:used communication between equipments of Router
Road Warrior:connect to server as mobile clients end.
Subnet: When working mode is Network-To-Network, are network of both sides.
Nexthop IP : When device is in LAN, then this IP is the IP address of devices
pointed Router.
IPsec port: when start L2tp, L2tp monitor port. L2tp default port is 1701.
IPsec Identity:Identity supplied to opposite side when connection negotiation.
Phase 1 :Phase 1 establish IPsec SA, supply IPSec service for data communication.
Work Mode:Main and Aggressive mode.
PFS : Precise transmit secrecy. Avoid when single key leaking to affect whole
communication system
Debug: Enable debug information
Enable NAT Traversal: If this Router doesn't connect with public network, but
transmit through IP original address, then please use "enable NAT Traversal"
Authentication: Pre-shared Key mode and Certificates X509 mode.
Cipher : DES,3DES,AES and AES128
Hash : SHA1 and MD5
DH group: Group1 、Group2 、Group5 、Group14 、Group15 、Group16 、
Group17 and Group18
SA lifetime (s): phase negotiation valid time
Key: when Pre-shared Key,it is shared key.
Password: when Certificate X509, key of the certificates.
Phase 2 : Phase 2 is protected by phase 1, any message didn't protect by phase 1 SA is
refused. In phase 2, negotiate communication protocol fast, change key and establish
Tel:+86 592 5901215
54
web:www.caimore.com/emain.asp
Advertisement
Table of Contents
