Manualshelf

User's Manual

ManualsBrandsAdvance Multimedia Internet Technology ManualsElectronicsWiFi Broadband BG
81828384858687888990
WiFiBroadbandBG
BDE761AM-001 User Manual 82
subnet domain for the devices connected via the VPN tunnel.
5. Remote subnet: The subnet of LAN site of remote VPN gateway. It can be a
host, a partial subnet, or the whole subnet of LAN site of remote gateway.
6. Remote Netmask: The remote netmask and associated remote subnet can
define a subnet domain for the devices connected via the VPN tunnel.
7. Remote Gateway: Enter the IP address of remote VPN gateway.
8. Phase 1 Key Life Time: The value of life time represents the life time of the key
which is dedicated at Phase 1 between both end gateways.
9. Phase 2 Key Life Time: The value of life time represents the life time of the key
which is dedicated at Phase 2 between both end gateways.
10. Encapsulation Protocol: There are three protocols can be selected: ESP, AH,
or ESP+AH.
11. PFS Group: Configures Perfect Forward Secrecy for connections created with
this IPSec transport profile by assigning a Diffie-Hellman prime modulus group.
There are three groups can be selected: Group 1, Group 2, Group 5.
Disable: No PFS group
Group 1: 768-bit Diffie-Hellman prime modulus group
Group 2: 1024-bit Diffie-Hellman prime modulus group
Group 5: 1536-bit Diffie-Hellman prime modulus group
12. Aggressive Mode: Enabling this mode will accelerate the establishing speed of
VPN tunnel, but the device will suffer from less security in the meanwhile. Hosts
in both ends of the tunnel must support this mode so as to establish the tunnel
properly.
13. Preshare key: The first key that supports IKE mechanism of both VPN gateway
and VPN client host for negotiating further security keys. The pre-shared key
must be the same one for both VPN gateways and clients.
14. Connection Type: There are three options for you to choose when the VPN
tunnel will be established. You can choose “Connect-on-Demand”, “Auto
Reconnect (always-on)”, or “Manually”.
15. Remote ID: The Type and the Value of the local VPN gateway must be the same
as that of the local ID of the remote VPN gateway.
16. Local ID: The Type and the Value of the local VPN gateway must be the same
as that of the Remote ID of the remote VPN gateway.
17. Dead Peer Detection: This feature will detect if remote VPN gateway still exists.
Indicate time of interval between every detection, and assigns value of timeout.
18. XAUTH: For the extended authentication function (XAUTH), the VPN client (or
initiator) needs to provide additional user information to the remote VPN server
(or VPN gateway). The VPN server would reject the connect request from VPN