D-Link DWR-921 User Manual page 155
Hide thumbs
Also See for DWR-921:
- User manual (255 pages) ,
- Quick installation manual (52 pages) ,
- How to set up (4 pages)
Table of Contents
Advertisement
DWR-921 4G LTE Router
User Manual
Figure 130. The page for adding an IPsec tunnel. The First Phase / The Second Phase sections.
Parameter
First phase
encryption algorithm
Hashing algorithm
First phase DHgroup
type
IKE-SA lifetime
Second phase
encryption algorithm
Authentication
algorithm
Enable PFS
Second phase
PFSgroup type
The First Phase
Select encryption algorithm from the drop-down list.
Select hashing algorithm from the drop-down list.
A Diffie-Hellman key group for Phase 1. Select a value from the drop-
down list.
The lifetime of IKE-SA keys in seconds. After the specified period it is
required to renegotiate the keys. The value specified in this field
should exceed the value specified in the IPsec-SA lifetime field.
Specify 0 if you don't want to limit the lifetime of the keys.
The Second Phase
Select encryption algorithm from the drop-down list.
Select authentication algorithm from the drop-down list.
Move the switch to the right to enable the PFS option (Perfect
Forward Secrecy). If the switch is moved to the right, a new
encryption key exchange will be used for Phase 2. This option
increases the security level of data transfer.
A Diffie-Hellman key group for Phase 2. Select a value from the drop-
down list. The field is available, if the Enable PFS switch is moved
to the right.
Page 155 of 191
Configuring via Web-based Interface
Description
Advertisement
Table of Contents
