User's Manual
Table Of Contents
- ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
- Contents
- 1. Introduction
- 2. Overview of the Configuration Commands
- 3. Net Mode Configuration Commands
- 4. Security Mode Configuration Commands
- Security Services Commands
- Security Schedules Commands
- IPv4 Add Firewall Rule and Edit Firewall Rule Commands
- IPv4 General Firewall Commands
- IPv6 Firewall Commands
- Attack Check Commands
- Session Limit, Time-Out, and Advanced Commands
- Address Filter and IP/MAC Binding Commands
- Port Triggering Commands
- UPnP Command
- Bandwidth Profile Commands
- Content Filtering Commands
- 5. System Mode Configuration Commands
- 6. Dot11 Mode Configuration Commands
- 7. VPN Mode Configuration Commands
- IPSec VPN Wizard Command
- IPSec IKE Policy Commands
- IPSec VPN Policy Commands
- IPSec VPN Mode Config Commands
- SSL VPN Portal Layout Commands
- SSL VPN Authentication Domain Commands
- SSL VPN Authentication Group Commands
- SSL VPN User Commands
- SSL VPN Port Forwarding Commands
- SSL VPN Client Commands
- SSL VPN Resource Commands
- SSL VPN Policy Commands
- RADIUS Server Command
- L2TP Server Commands
- 8. Overview of the Show Commands
- 9. Show Commands
- 10. Utility Commands
- CLI Command Index
VPN Mode Configuration Commands
195
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Manual policy settings—Outbound policy
manual_spi_out
number The Security Parameters Index (SPI) for the
outbound policy as an hexadecimal value
between 3 and 8 characters.
manual_authentication_algorithm
MD5 or SHA-1 Specifies the authentication algorithm to
negotiate the security association (SA):
• SHA-1. Hash algorithm that produces a
160-bit digest.
• MD5. Hash algorithm that produces a
128-bit digest.
manual_authentication_key_in
key The encryption key for the inbound policy.
The length of the key depends on setting of
the
manual_authentication_algorithm
keyword.
manual_authentication_key_out
key The encryption key for the outbound policy.
The length of the key depends on setting of
the
manual_authentication_algorithm
keyword.
Auto policy settings
auto_sa_lifetime bytes
number The lifetime of the security association (SA)
is the period or the amount of transmitted
data after which the SA becomes invalid and
needs to be renegotiated. Either issue the
auto_sa_lifetime bytes keyword and
specify the number of bytes, or issue the
auto_sa_lifetime seconds keyword
and specify the period in seconds.
auto_sa_lifetime seconds
seconds
auto_encryption_algorithm
None, DES, 3DES,
AES-128, AES-192,
AES-256
Specifies the encryption algorithm, if any, to
negotiate the security association (SA):
• None.
• DES. Data Encryption Standard (DES).
• 3DES. Triple DES.
• AES-128. Advanced Encryption Standard
(AES) with a 128-bit key size.
• AES-192. AES with a 192-bit key size.
• AES-256. AES with a 256-bit key size.
Keyword (might consist of two separate
words)
Associated
Keyword to Select
or Parameter to
Type
Description