Table of Contents
Advertisement
Perfect Forward Secrecy: When users check the PFS option, don't forget to activate the PFS
function of the VPN device and the VPN Client as well.
Phase 1/ Phase 2 DH Group: This option allows users to select Diffie-Hellman groups: Group
1/ Group 2/ Group 5.
Phase 1/ Phase 2 Encryption: This option allows users to set this VPN tunnel to use any
encryption mode. Note that this parameter must be identical to that of the remote encryption
parameter: DES (64-bit encryption mode), 3DES (128-bit encryption mode), AES (the standard
of using security code to encrypt information). It supports 128-bit, 192-bit, and 256-bit encryption
keys.
Phase 1/Phase 2 Authentication: This authentication option allows users to set this VPN
tunnel to use any authentication mode. Note that this parameter must be identical to that of the
remote authentication mode: "MD5" or "SHA1".
Phase 1 SA Life Time: The life time for this exchange code is set to 28800 seconds (or 8hours)
by default. This allows the automatic generation of other exchange password within the valid
time of the VPN connection so as to guarantee security.
Phase2 SA Life Time: The life time for this exchange code is set to 3600 seconds (or 1hours)
by default. This allows the automatic generation of other exchange password within the valid
time of the VPN connection so as to guarantee security.
Preshared Key : For the Auto (IKE) option, enter a password of any digit or characters in the text
of "Pre-shared Key" (the example here is set as test), and the system will automatically translate
what users entered as exchange password and authentication mechanism during the VPN
tunnel connection. This exchange password can be made up of up to 30 characters.
154
V
P
N
Q
o
S
W
i
r
e
l
e
s
s
R
o
u
V
P
N
Q
o
S
W
i
r
e
l
e
s
s
R
o
u
t
e
r
t
e
r
Advertisement
Table of Contents
