Billion BiPAC 7404V series User Manual page 88

Voip/(802.11g) adsl2+ (vpn) firewall router

Hide thumbs Also See for BiPAC 7404V series:

User manual (155 pages)

Quick start manual (14 pages)

User manual (150 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

3DES: Stands for Triple Data Encryption Standard, it uses 168 (56*3) bits as an

encryption method.

AES: Stands for Advanced Encryption Standards, you can use 128, 192 or 256 bits as

encryption method.

Diffie-Hellman Group: It is a public-key cryptography protocol that allows two parties to establish a

shared secret over an unsecured communication channel (i.e. over the Internet). There are three

modes, MODP 768-bit, MODP 1024-bit and MODP 1536-bit. MODP stands for Modular

Exponentiation Groups.

Type: Specify local ID type.

Content: Input ID's information, like domain name www.ipsectest.com.

Type: Specify Remote ID type.

Identifier: Input remote ID's information, like domain name www.ipsectest.com.

SA Lifetime: Specify the number of minutes that a Security Association (SA) will stay active before

new encryption and authentication key will be exchanged. There are two kinds of SAs, IKE and

IPSec. IKE negotiates and establishes SA on behalf of IPSec, an IKE SA is used by IKE.

Phase 1 (IKE): To issue an initial connection request for a new VPN tunnel. The range can be from

5 to 15,000 minutes, and the default is 240 minutes.

Phase 2 (IPSec): To negotiate and establish secure authentication. The range can be from 5 to

15,000 minutes, and the default is 60 minutes.

A short SA time increases security by forcing the two parties to update the keys. However, every

time the VPN tunnel re-negotiates, access through the tunnel will be temporarily disconnected.

PING for Keepalive: It is used to detect IPSec tunnel connection failure. Connection failure is

defined as abort or in NO response state. In such event Ping to Keepalive takes proper action to

ensure the connection quality of IPSec.

PING to the IP: It is able to IP Ping the remote PC with the specified IP address and alert when the

connection fails. Once alter message is received, Router will drop this tunnel connection. Re-

establish of this connection is required. Default setting is 0.0.0.0 which disables the function.

Internal: This sets the time interval between Pings to the IP function to monitor the connection

status. Default interval setting is 10 seconds. Time interval can be set from 0 to 3600 second, 0

second disables the function.

Chapter 4: Configuration

VoIP/(802.11g) ADSL2+ (VPN) Firewall Router

Local ID:

Remote ID:

Table of Contents

Billion BiPAC 7404V series User Manual page 88

Related Manuals for Billion BiPAC 7404V series

Related Products for Billion BiPAC 7404V series