Manualshelf

Specifications

ManualsBrandsCabletron Systems ManualsNetwork CardE2100
919293949596979899100
3
Firewall Administration System (FAS)
Figure 3.40: Select the Local Certificate
General Settings
This dialog is shown in Figure 3.42 on page 87. Assign a name for the con-
nection. This makes it easier to identify the connection if you set up several
tunnels. A connection name may only contain letters, digits, underscores, and
hyphens.
Decide if the SuSE Firewall on CD should open a connection to another VPN
server when it boots (Client mode) or it should wait for incoming VPN con-
nections (Server Mode). For external locations, which should have a connec-
tion to the headquarters and have real IP addresses, the client mode should
be chosen both for the external location and the headquarters.
For ‘PFS Setting’, “Perfect Forward Secrecy” is activated by default. This
means that the asymmetric key may be changed. Next, specify the lifetime
of the key in minutes. After this time, an attempt is made to change the sym-
metrical key. Specify the number of attempts to make in case of error. If you
enter 0, there is no limit to the number of attempts.
85SuSE Linux Firewall on CD2