Multi-Tech Systems, Inc.
RF550/560VPN Reference Guide – RF550/560VPN Using a NAT Box with IPSec Pass-Through 15
l) Perfect Forward Secure – Check the Enabled button.
m)
Encryption Protocol – Select the encryption protocol used for your configuration. The
default protocol for the RF550VPN/RF560VPN communicating with another
RF550VPN/RF560VPN is 3DES. (Ex: 3DES)
n)
PreShared Key – Enter the PreShared Key name (you can enter an alphanumeric name but
it needs to match the security code for the RouteFinder at Site B).
o)
Key Life – Enter the amount of time that tells the router to renegotiate the Key. For example,
3600 seconds is 60 minutes.
p)
IKE Life Time – Enter the amount of time that tells the router to renegotiate the IKE security
association. For example, 28800 seconds is 8 hours.
14b. The screen pictured below assumes Manual as the Secure Association is selected on the VPN
Settings screen. The Connection Name (SiteAtoB) defaults into the first field. Continue to enter
the following settings:
Note: If Secure Association is set to Manual, the two RF550VPN/RF560VPNs must
communicate with Static IP addresses at both ends.
Note: Enter all data for a) through h) as illustrated above. Then complete the following:
i)
Secure Association – Selecting Manual instead of IKE will set how inbound packets will be
filtered and then the following fields display.
j)
Incoming SPI – Enter the incoming SPI that the remote VPN gateway, at Site B, will use to
identify this Security Association. Enter a three-digit number between 100 and 400. This value
must match the outgoing SPI value entered at the remote VPN gateway at Site B. (Ex: 400)
k)
Outgoing SPI – Enter the outgoing SPI that the Site A VPN gateway will use to identify this
Security Association. Enter a three-digit number between 100 and 400. This value must match
the incoming SPI value entered at the remote VPN gateway at Site B. (Ex: 100)
l)
Encryption Protocol – Select an appropriate encryption algorithm: Null, DES, 3DES. 3DES is
the recommended choice.
m)
Encryption Key – Enter a string of characters to be used to encrypt and decrypt transmitted
data between the two RouteFinders. The string is made up of 8-16 alphanumeric characters
and needs to match the Encryption Key for the RouteFinder at Site B. (Ex: 1o2t3t4f)
n)
Authentication Protocol – Select an appropriate authentication algorithm: MD5 or SHA-1.
MD5 is the recommended choice.
o)
Authentication Key – Enter a string of characters to be used as a key for authentication
between the two RouteFinders. The string is similar to a password and is made up of 8-16
alphanumeric characters and needs to match the Authentication Key for the VPN at Site B.
(Ex: 1234567890az)
(27 stránky)
(2 stránky)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Komentáře k této Příručce