Setting Ipsec Parameters - Enterasys ANG-1000 Installation & Service Manual

Configuring the Remote ANG-3000/7000 with APM
Aurorean Network Gateways support two tunnel protocols:
For each tunnel protocol, you can configure encryption, data integrity, and
compression parameters. IPsec and PPTP differ greatly in how they perform
"authentication". IPsec ensures data integrity by authenticating individual
packets via an IPsec Signature algorithm as well as "authenticates" users by
employing public/private key pairs while PPTP performs user authentication
using MS-CHAP.
When selecting this option, the ANG Protocol Information Window appears
with the IPsec tab selected by default. If you want to configure PPTP instead,
refer to "Setting PPTP Parameters" on page 94. If your ANG will be
terminating both PPTP and IPsec tunnels, configure both protocol types.

Setting IPsec Parameters

To set the IPsec parameters of the ANG, perform the following steps:
6 Do one of the following:
– If you have already created a Group, scroll down and select the
group you want to associate with this ANG.
– Leave the field blank if you want to assign the Remote ANG's
tunnel endpoint to a previously configured Virtual Subnet.
7 In the IP address field, assign a static address to this user.
8 Click Add User.
r IP Security (IPsec) protocol developed by the Internet Engineering
Task Force (IETF) that adds security extensions for encryption and
message authentication to the IP protocol.
r Point-to-Point Tunneling Protocol (PPTP) - developed by Microsoft,
3Com and others - uses the Point-to-Point (PPP) protocol and Generic
Routing Encapsulation (GRE) to route packets through the Internet.
1 Click on the Protocols option.
The IPsec Configuration window appears as shown in Figure 68.
Installing Software & Setting Networking Configurables
Aurorean Installation & Service Guide
Chapter 3