Cradlepoint COR IBR350 Manual page 113

Hide thumbs Also See for COR IBR350:

Quick start manual (9 pages)

Quick start manual (4 pages)

Manual (94 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

page of 148

/ 148
Contents
Table of Contents
Bookmarks

Table of Contents

Add/Edit Tunnel – IKE Phase 2 Perfect Forward Secrecy (PFS): Enabling this feature will require IKE to generate a new set of keys in Phase 2

rather than using the same key generated in Phase 1. Additionally, with this option enabled the new keys generated in Phase 2 are exchanged in

an encrypted session. Enabling this feature aﬀords the policy greater security.

Key Lifetime: The lifetime of the generated keys of Phase 2 of the IPsec negotiation from IKE. After the time has expired, IKE will renegotiate a

new set of Phase 2 keys.

Phase 2 has the same selection of Encryption, Hash, and DH Groups as Phase 1, but you are restricted to only one DH Group. Phase 2 and

Phase 1 selections do not have to match.

Add/Edit Tunnel – Dead Peer Detection Dead Peer Detection (DPD) deﬁnes how the router will detect when one end of the IPsec session

loses connection while a policy is in use.

Figure 142: Add/Edit VPN Tunnel IKE Dead Peer Detection

Connection Idle Time: Conﬁgure how long the router will allow an IPsec session to be idle before beginning to send Dead Peer Detection (DPD)

packets to the peer machine. (Default: 30 seconds. Range: 10 – 3600 seconds.)

113

Table of Contents

Cradlepoint COR IBR350 Manual page 113

Related Manuals for Cradlepoint COR IBR350

Related Products for Cradlepoint COR IBR350

Table of Contents