User guide

ManualsBrandsMotorola ManualsNetwork RouterNetopia 3300

221

222

223

224

225

226

227

228

229

230

228

Peer Internal IP

Netmask

The Peer Internal IP Netmask is the subnet mask of the Peer Internal IP

Network.

PFS Enable Perfect Forward Secrecy (PFS) is used during SA renegotiation. When

PFS is selected, a Difﬁe-Hellman key exchange is required. If enabled, the

PFS DH group follows the IKE phase 1 DH group.

Pre-Shared Key The Pre-Shared Key is a parameter used for authenticating each side. The

value can be an ASCII or Hex and a maximum of 64 characters. ASCII is

case-sensitive.

Pre-Shared Key

Type

The Pre-Shared Key Type classiﬁes the Pre-Shared Key.

IPSec VPN sup-

ports ASCII or HEX types

Name The Name parameter refers to the name of the conﬁgured tunnel. This is

mainly used as an identiﬁer for the administrator. The Name parameter is

an ASCII value and is limited to 31characters. The tunnel name is the only

IPSec parameter that does not need to match the peer gateway.

Negotiation

Method

This parameter refers to the method used during the Phase I key

exchange, or IKE process.

IPSec VPN supports Main or Aggressive

Mode. Main mode requires 3 two-way message exchanges while Aggres-

sive mode only requires 3 total message exchanges.

SA Encrypt Type SA Encryption Type refers to the symmetric encryption type. This encryp-

tion algorithm will be used to encrypt each data packet. SA Encryption

Type values supported include DES and 3DES.

SA Hash Type SA Hash Type refers to the Authentication Hash algorithm used during SA

negotiation. Values supported include MD5 and SHA1. N/A will display if

NONE is chosen for Auth Protocol.

Soft MBytes Setting the Soft MBytes parameter forces the renegotiation of the IPSec

Security Associations (SAs) at the conﬁgured Soft MByte value. The value

can be conﬁgured between 1 and 1,000,000 MB and refers to data trafﬁc

passed. If this value is not achieved, the Hard MBytes parameter is

enforced.

Soft Seconds Setting the Soft Seconds parameter forces the renegotiation of the IPSec

Security Associations (SAs) at the conﬁgured Soft Seconds value. The

value can be conﬁgured between 60 and 1,000,000 seconds.

Hard MBytes Setting the Hard MBytes parameter forces the renegotiation of the IPSec

Security Associations (SAs) at the conﬁgured Hard MByte value.

The value can be conﬁgured between 1 and 1,000,000 MB and refers to

data trafﬁc passed.

Hard Seconds Setting the Hard Seconds parameter forces the renegotiation of the IPSec

Security Associations (SAs) at the conﬁgured Hard Seconds value. The

value can be conﬁgured between 60 and 1,000,000 seconds