User`s manual
EDR-G903/G902 Features and Functions
3-46
Data Exchange (IPSec phase II)
Perfect Forward Secrecy
Setting Description Factory Default
Enable or Disable Uses different security key for different IPSec phases to
enhance security
Disable
SA Lifetime
Setting Description Factory Default
SA lifetime (minutes) Lifetime for SA in Phase 2 480 (min)
Encryption Algorithm
Setting Description Factory Default
DES
3DES
AES-128
AES-192
AES-256
Encryption Algorithm in data exchange 3DES
Hash Algorithm
Setting Description Factory Default
Any
MD5
SHA1
SHA256
Hash Algorithm in data exchange SHA1
Dead Peer Detection
Dead Peer Detection is a mechanism to detect whether or not the connection between a local secure router and
a remote IPSec tunnel has been lost.
Action
Action when a dead peer is detected.
Setting Description Factory Default
Hold Hold this VPN tunnel Hold
Restart Reconnect this VPN tunnel
Clear Clear this VPN tunnel
Disable Disable Dead Peer Detection
Delay
Setting Description Factory Default
Delay time (seconds) The period of dead peer detection messages 30 (sec)
Timeout
Setting Description Factory Default
Timeout (seconds) Timeout to check if the connection is alive or not 120 (sec)