Multitech MultiConnect rCell 100 User Manual page 52
Hide thumbs
Also See for MultiConnect rCell 100:
- Quick start manual ,
- User manual (104 pages) ,
- Configuration manual (38 pages)
Table of Contents
Advertisement
CHAPTER 11 DEFINING TUNNELS
Field
Tunnel Type
Authentication Method
Pre-Shared Key
Encryption Method
IKE Lifetime
Key Life
Max Retries
Enable UID
LocalID
RemoteID
Compression
Perfect Forward Secrecy
NAT Traversal
Aggressive Mode
52
Description
Internet Key Exchange (IKE) for host-to-host, host-to-
subnet, or subnet-to-subnet tunnels. This field cannot
be modified.
Authentication is performed using secret Pre-Shared
Keys and hashing algorithms (SHA1 MD5). This field
cannot be modified.
Secret key that is known by both endpoints.
IKE encryption algorithm used for the connection
(phase 1 - ISAKMP SA). Based off of phase 1, a secure
set of defaults are used for phase 2, unless the
Advanced option is used, in which case, all components
of both phase 1 and 2 are specified by the user.
Duration for which the ISAKMP SA exists from
successful negotiation to expiration.
Duration for which the IPsec SA exists from successful
negotiation to expiration.
Number of retry attempts for establishing the IPsec
tunnel. Enter zero for unlimited retries.
Enable Unique Identifier String (UID) to enable the Local
ID and Remote ID fields.
String identifier for the local security gateway.
String identifier for the remote security gateway.
Enable IPComp. This protocol will increase the overall
communication performance by compressing the
datagrams through. This requires greater CPU
processing.
Newly generated keys are unrelated to older keys.
A technique that establishes and maintains the tunnel
while traversing network address translation gateways.
This may be necessary if this device or the remote
endpoint is behind a NAT firewall.
Wheather to allow a less secure mode that exchanges
identification in plain text. This may be used for
establishing tunnels where one or more endpoints have
a dynamic public IP address. This mode is faster to
negotiate phase 1. The downside is that the
authentication hash is transmitted unencrypted. It's
possible to capture the hash and start a dictionary or
brute force attacks to recover the PSK.
MultiConnect
®
rCell 100 MTR-H5 User Guide
Advertisement
Table of Contents
Need help?
Do you have a question about the MultiConnect rCell 100 and is the answer not in the manual?
Questions and answers