ADTRAN NetVanta 2000 Series Quick Start Manual page 10
Hide thumbs
Also See for NetVanta 2000 Series:
- Quick start manual (15 pages) ,
- Quick start manual (2 pages) ,
- System manual (20 pages)
Advertisement
IPSec Policy Configuration (continued)
1
3
5
7
10
12
13
14
1.
Enter an alphanumeric string (spaces are not valid characters) to identify this policy (this is usually the
same as the IKE name).
2.
Select ENABLE to configure this as an active policy.
3.
Select OTHER and enter the local NetVanta 2000's assigned LAN network address (e.g., 10.10.20.0) and
associated subnet mask.
4.
Select OTHER and enter the remote NetVanta 2000's assigned LAN network address (e.g., 10.10.10.0)
and associated subnet mask.
5.
Select ANY (for both the Source Port and Destination Port) to apply this policy to all data ports.
6.
Select ALL to apply this policy to all data protocols.
7.
Enter the remote NetVanta 2000's assigned WAN IP address.
If the remote NetVanta 2000 is configured for dynamic addressing on the WAN interface, enter
0.0.0.0 here.
8.
Select NONE.
9.
Select ESP WITH AUTH.
10.
Select SHA1 to invoke secure hash algorithm #1.
11.
Select 3DES to use Triple-DES encryption algorithm.
12.
Set the key lifetime value to 28800 seconds (this is the ADTRAN suggested value).
When determining the value for your application, typical usage contains a 3:1 ratio between the
IKE and IPSec key lifetime values. This ratio provides minimal key negotiation overhead.
13.
Select LAST TRANSFORM for both Security Protocol settings.
14.
Click the Add button to register this policy.
10
2
4
6
8
9
11
Advertisement
