User's Manual
WiFiBroadbandBG
BDE761AM-001 User Manual 83
clients because of invalid user information, even though the pre-shared key is
correct. This function is suitable for remote mobile VPN clients. You can not only
configure a VPN rule with a pre-shared key for all remote users, but you can also
designate account / password for specific users that are permitted to establish
VPN connection with VPN server.
XAUTH - None: Without Extended Authentication (xAuth).
XAUTH - Server: Check this checkbox if the device behaves as a VPN
server, and will validate the user information of VPN clients. You can click on
"XAUTH Account" button at IPSec Setting main page to edit the permitted
user account / password.
XAUTH - Client: Check this checkbox if the device behaves as a VPN client,
and will send user information to remote VPN server for extended
authentication. You need to fill in correct user name and password to pass
the extended authentication.
19. Set IKE Proposal: Check this checkbox to enable IKE proposals.
Encryption: There are five algorithms can be selected: DES, 3DES, AES-128,
AES-192, and AES-256.
Authentication: There are two algorithms can be selected: SHA1 and MD5.
DH Group: There are three groups can be selected: Group 1 (MODP768),
Group 2 (MODP1024), and Group 5 (MODP1536).
Enable: Check this checkbox to enable the IKE Proposal with this rule.
20. Set IPSec Proposal: Check this checkbox to enable IPSec proposals.
Encryption: There are five algorithms can be selected: DES, 3DES, AES-128,
AES-192, and AES-256. But when the encapsulation protocol is set to AH, you
can choose Null without encryption.
Authentication: There are two algorithms can be selected: SHA1 and MD5. But
none also can be selected here for IPSec proposal.
Enable: Check this checkbox to enable IPSec Proposal with this rule.
Click on “Save” to store what you just select or” Undo” to give up