User`s guide
VigorPro5510 Series User’s Guide
151
IKE Authentication
Method
This usually applies to those are remote dial-in user or node
(LAN-to-LAN) which uses dynamic IP address and
IPSec-related VPN connections such as L2TP over IPSec and
IPSec tunnel.
Certificate for Dial-in – Choose the local certificate that
generated or imported on Certificate Management>>Local
Certificate.
Pre-Shared Key -Currently only support Pre-Shared Key
authentication.
Pre-Shared Key- Specify a key for IKE authentication.
Confirm Pre-Shared Key-Confirm the pre-shared key.
IPSec Security Method
Medium - Authentication Header (AH) means data will be
authenticated, but not be encrypted. By default, this option is
active.
High - Encapsulating Security Payload (ESP) means payload
(data) will be encrypted and authenticated. You may select
encryption algorithm from Data Encryption Standard (DES),
Triple DES (3DES), and AES.
3
3
.
.
1
1
0
0
.
.
4
4
I
I
P
P
S
S
e
e
c
c
P
P
e
e
e
e
r
r
I
I
d
d
e
e
n
n
t
t
i
i
t
t
y
y
To use digital certificate for peer authentication in either LAN-to-LAN connection or
Remote User Dial-In connection, here you may edit a table of peer certificate for selection.
As shown below, the router provides 200 entries of digital certificates for peer dial-in users.
Set to Factory Default
Click it to clear all indexes.
Index
Click the number below Index to access into the setting page
of IPSec Peer Identity.
Name
Display the profile name of that index.