Robustel R3000 User Guide Manual de usuario descargar pdf (Pagina 73)

Robustel GoRugged R3000 User Guide

RT_UG_R3000_v.2.0.0 17.01.2014 72 / 131

Confidential

selected, type a name without any at sign (@) for the local security

gateway, e.g., test.robustel.com.

User FQDN: Uses a user FQDN type as the ID in IKE negotiation. If this

option is selected, type a name string with a sign @ for the local

security gateway, e.g., test@robustel.com.

Negotiation Mode



phase 1. If the IP address of one end of an IPSec tunnel is obtained

dynamically, the IKE negotiation mode must be aggressive. In this case,

SAs can be established as long as the username and password are

correct.

Main

Encryption Algorithm



used in IKE negotiation.

DES: Uses the DES algorithm in CBC mode and 56-bit key.

3DES: Uses the 3DES algorithm in CBC mode and 168-bit key.

AES128: Uses the AES algorithm in CBC mode and 128-bit key.

AES192: Uses the AES algorithm in CBC mode and 192-bit key.

AES256: Uses the AES algorithm in CBC mode and 256-bit key.

3DES

Authentication

Algorithm



MD5: Uses HMAC-SHA1.

SHA1: Uses HMAC-MD5.

MD5

DH Group



used in key negotiation phase 1.

MODP768_1: Uses the 768-bit Diffie-Hellman group.

MODP1024_2: Uses the 1024-bit Diffie-Hellman group.

MODP1536_5: Uses the 1536-bit Diffie-Hellman group.

MODP1024_2

Authentication



used in IKE negotiation.

PSK: Pre-shared Key.

CA: Certification Authority.

XAUTH: Extended Authentication to AAA server.

PSK

Secrets

Enter the Pre-shared Key.

Null

Life Time @ IKE

Parameter

Set the lifetime in IKE negotiation.

Before an SA expires, IKE negotiates a new SA. As soon as the new SA is

set up, it takes effect immediately and the old one will be cleared

automatically when it expires.

86400

SA Algorithm













Note: Higher security means more complex implementation and lower

speed. DES is enough to meet general requirements. Use 3DES when

3DES_MD5_96

1 2 ... 68 69 70 71 72 73 74 75 76 77 78 ... 131 132

Comentarios a estos manuales

Sin comentarios

Robustel R3000 User Guide Manual de usuario Pagina 73

Comentarios a estos manuales

Relacionado con productos y manuales para Routers Robustel R3000 User Guide