User's Manual
Table Of Contents
- ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
- Contents
- 1. Introduction
- 2. Overview of the Configuration Commands
- 3. Net Mode Configuration Commands
- 4. Security Mode Configuration Commands
- Security Services Commands
- Security Schedules Commands
- IPv4 Add Firewall Rule and Edit Firewall Rule Commands
- IPv4 General Firewall Commands
- IPv6 Firewall Commands
- Attack Check Commands
- Session Limit, Time-Out, and Advanced Commands
- Address Filter and IP/MAC Binding Commands
- Port Triggering Commands
- UPnP Command
- Bandwidth Profile Commands
- Content Filtering Commands
- 5. System Mode Configuration Commands
- 6. Dot11 Mode Configuration Commands
- 7. VPN Mode Configuration Commands
- IPSec VPN Wizard Command
- IPSec IKE Policy Commands
- IPSec VPN Policy Commands
- IPSec VPN Mode Config Commands
- SSL VPN Portal Layout Commands
- SSL VPN Authentication Domain Commands
- SSL VPN Authentication Group Commands
- SSL VPN User Commands
- SSL VPN Port Forwarding Commands
- SSL VPN Client Commands
- SSL VPN Resource Commands
- SSL VPN Policy Commands
- RADIUS Server Command
- L2TP Server Commands
- 8. Overview of the Show Commands
- 9. Show Commands
- 10. Utility Commands
- CLI Command Index
VPN Mode Configuration Commands
181
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
extended_authentication {None | IPSecHost {xauth_username
<user name>} {xauth_password <password>} | EdgeDevice
{extended_authentication_type {User-Database | RadiusPap |
RadiusChap}}}
Mode vpn-config [ike-policy]
Keyword Associated Keyword to
Select or Parameter to Type
Description
Mode Config record selection and general policy settings
enable_mode_config Y or N Specifies whether or not the IKE policy
uses a Mode Config record.
mode_config_record record name If the enable_mode_config keyword is
set to Y, specifies the Mode Config record
that should be used. For information
about configuring Mode Config records,
see the vpn ipsec mode_config configure
<record name> command.
direction_type Initiator, Responder, or
Both
The IKE direction type:
• Initiator. The wireless VPN firewall
initiates the connection to the remote
endpoint.
• Responder. The wireless VPN firewall
responds only to an IKE request from
the remote endpoint.
• Both. The wireless VPN firewall can
both initiate a connection to the remote
endpoint and respond to an IKE request
from the remote endpoint.
exchange_mode Main or Aggresive The exchange mode:
• Main. This mode is slower than the
Aggressive mode but more secure.
• Aggressive. This mode is faster than
the Main mode but less secure. When
the IKE policy uses a Mode Config
record, the exchange mode needs to be
set to Aggresive.