Figure 467 Routing Command Example - ZyXEL Communications ZYWALL 2 PLUS User Manual

By default the ZyWALL uses a 128 bit AES encryption key for phase 2 IPSec tunnels. Use
this command to edit an existing VPN rule to use a longer AES encryption key.
See the following example. Say you have a VPN rule one that uses AES for the phase 2
encryption and you want it to use 192 bit encryption.
• Use the first line to start editing the VPN rule.
• The second line sets VPN rule one to use 192 bit AES for the phase 2 encryption.
• The third line displays the results.

Figure 467 Routing Command Example

ras> ipsec ipsecEdit 1
ras> ipsec ipsecConfig encryKeyLen 1
ras> ipsec ipsecDisplay
---------- IPSec Setup ----------
Index #= 1
Bound IKE 9999
ControlPing = No
Local: Addr Type= SINGLE
IP Addr Start= 0.0.0.0
Remote: Addr Type= SINGLE
IP Addr Start= 0.0.0.0
Enable Replay Detection= No
Phase 2 - Active Protocol= ESP
ras>
ZyWALL 2 Plus User's Guide
Active= No Multi Pro = No
NailUp = No
LogControlPing = No
Encryption Algorithm= AES
Encryption Key Length = 192
SA Life Time (Seconds)= 28800
Encapsulation= Tunnel
Appendix G Command Interpreter
Protocol= 0 Global SW= 0xA
Netbios = No Name= test
Control ping address = 0.0.0.0
Port Start= 0
Mask= N/A
Port Start= 0
Mask= N/A
Key Management= IKE
Authentication Algorithm= SHA1
Perfect Forward Secrecy (PFS)= None
End= N/A
End= N/A
645