Manualshelf

User manual

ManualsBrandsBaseWall ManualsComputer equipmentDual WAN VPN Firewall VPN 2000
61626364656667686970
- BaseWall VPN 6000 user manual -
14 IPSec configuration
14.1 Identification options
After running the IPSec wizard and after the apply of the configuration the
firewall will start the IPSec tunnels when there is traffic towards the remote
network or when the remote network tries to connect the tunnel.
The tunnels are configured with sane defaults so in a lot of cases the normal
configuration will just work. When there are problems with the tunnels there
are several parameters that can alter the way IPSec behaves.
Click on the tunnel gateway computer and select the “IPSec Authentification”
option to open the first related screen.
Select the ports on the IPSec policy for the remaining options.
14.2 IPSec options
Exchange mode: main or aggressive key exchange, some implementations of
IPSec need this option but aggressive is less secure than the default.
Encryption Algorithm: aes is the world standard but sometimes others are
required.
Hash Algorithm: md5 is somewhat older and less secure.
Diffie-Hellman Group: need to be the same value as the other side of the
IPSec tunnel.
Auto-connect: off when the other side should allways op the tunnels
Page 66 / 79