Table of Contents
Advertisement
16 VPN
352
Field
Lifetime
The menu Advanced Settings consists of the following fields:
Fields in the Advanced Settings menu.
Description
used to protect the keys of a renewed phase 2 SA, even if the
keys of the phase 1 SA have become known.
The field has the following options:
•
: During the Diffie-Hellman key calculation, mod-
ular exponentiation at 768 bits is used to create the encryption
material.
•
(default value): During the Diffie-Hellman key
calculation, modular exponentiation at 1024 bits is used to
create the encryption material.
•
: During the Diffie-Hellman key calculation,
modular exponentiation at 1536 bits is used to create the en-
cryption material.
Define how the lifetime is defined that will expire before phase 2
SAs need to be renewed.
The new SAs are negotiated shortly before expiry of the current
SAs. As for RFC 2407, the default value is eight hours, which
means the key must be renewed once eight hours have
elapsed.
The following options are available for defining the Lifetime:
• Input in Seconds: Enter the lifetime for phase 2 key in
seconds. The value can be a whole number from
. The default value is
• Input in kBytes: Enter the lifetime for phase 2 keys as amount
of data processed in kBytes. The value can be a whole num-
ber from
to
Rekey after : Specify the percentage in the course of the lifetime
at which the phase 2 keys are to be regenerated.
The percentage entered is applied to both the lifetime in
seconds and the lifetime in kBytes.
The default value is
%.
bintec elmeg GmbH
to
.
. The default value is .
bintec RS Series
Hide quick links:
Advertisement
Table of Contents
