Epygi Quadro2x Administrator's Manual page 87
Hide thumbs
Also See for Quadro2x:
- Administrator's manual (151 pages) ,
- Installation manual (62 pages) ,
- Manual (44 pages)
Table of Contents
Advertisement
Quadro Baseline
The Local ID requires an IP address, Quadro FQDN (Fully
Qualified Domain Name) that is resolved to an IP address,
or any @-ed string that is used in the same way.
Remote ID also requires an IP address, the IPSec
Connection partner's FQDN (Fully Qualified Domain Name)
that is resolved to an IP address, or any @-ed string that is
used in the same way.
The Local ID and Remote ID text fields may have the
values in one of the formats presented below:
•
IP address – example: 10.1.19.32.
•
Host name – example: vpn.epygi.com. This form
requires additional resources to resolve the host name,
therefore it is not recommended to use this format.
•
@FQDN – example: @vpn.epygi.com. This form is
considered as a string, and is not being resolved. It is
recommended to use this form for most applications.
•
user@FQDN - example: quadro@vpn.epygi.com. This
form is also considered as a string, and is not being
resolved. It has no advantages over the previous form.
Please Note:
If Shared Secret is defined, the Local ID
and Remote ID may be undefined. Exceptions are cases
when NAT Traversal is enabled and/or the partner device is
a road warrior; in this case at least one of the IDs need to
be defined.
PFS (Perfect Forward Secrecy) is a procedure of system key exchange, which uses a long-term key and generates short-term keys as is required.
Thus, an attacker who acquires the long-term key can neither read previous messages that they may have captured nor read future ones.
Use IPSec Compression enables IPSec data compression. This option is displayed only if the IPSec-VPN partner supports it.
The Manual Keying page offers the following components:
Depending on the selected encryption and authentication
services of the prior page (IPSec Connection Properties)
you will get some of the following text fields:
•
DES Encryption Key
•
3DES Encryption Key
•
SHA1 Authentication Key
•
MD5 Authentication Key
Manual keys must be entered in the hexadecimal format,
otherwise the error message "Incorrect Encryption Key" will
appear.
The SPIs (Security Parameter Index) are indices to keep
the
IPSec
Connection
association (SA) is defined by destination, protocol and
SPI. Without the SPI, connections to the same gateway
using the same protocol cannot be distinguished.
Quadro2x, Quadro2xi; SW Version 4.0.x
Quadro2x Manual II: Administrator's Guide – Administrator's Graphical User Interface
tunnels
distinct.
A
security
Fig. II-143: IPSec Connection Wizard - Automatic Keying Settings page
Fig. II-144: IPSec Connection Wizard - Manual Keying Settings page
87
Advertisement
Table of Contents
Need help?
Do you have a question about the Quadro2x and is the answer not in the manual?