Manualshelf

User`s manual

ManualsBrandsDestination Audio ManualsComputer equipmentCS500
919293949596979899100
Content Security Gateway User’s Manual
- 93 -
4.3.8 VPN
The CS-500 adopts VPN to set up safe and private network service, and combine the remote Authentication
system in order to integrate the remote network and PC of the enterprise. It also provides the remote users a
safe encryption way to have best efficiency and encryption when delivering data. CS-500 provides two kinds
of VPN service and the PPTP client.
IPSec Autokey: The system manager can create a VPN connection using Autokey IKE. Autokey IKE
(Internet Key Exchange) provides a standard method to negotiate keys between two security gateways. It
also can set up IPSec Lifetime and Preshared Key of the CS-500.
PPTP Server: The System Manager can set up VPN-PPTP Server functions at CS-500 in this chapter.
PPTP Client: The System Manager can set up VPN-PPTP Client functions at CS-500 in this chapter.
What is VPN?
To set up a Virtual Private Network (VPN), you don’t need to configure an Access Policy to enable
encryption. Just fill in the following settings: VPN Name, Source Subnet, Destination Gateway, Destination
Subnet, Authentication Method, Preshare key, Encapsulation and IPSec lifetime. The Content Security
Gateway with the other Gateway on both ends must use the same Preshare key and IPSec lifetime to make a
VPN connection.
4.3.8.1 IPSec Autokey
This chapter describes steps to create a VPN connection using Autokey IKE. Autokey IKE (Internet Key
Exchange) provides a standard method to negotiate keys between two security gateways. For example, with
two Content Security Gateway devices, IKE allows new keys to be generated after a set amount of time has
passed or a certain threshold of traffic has been exchanged.
Accessing the Autokey IKE window
Click IPSec Autokey under the VPN menu to enter the IPSec Autokey window. The IPSec Autokey table
displays current configured VPNs.