User's Manual
Table Of Contents
- ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
- Contents
- 1. Introduction
- 2. Overview of the Configuration Commands
- 3. Net Mode Configuration Commands
- 4. Security Mode Configuration Commands
- Security Services Commands
- Security Schedules Commands
- IPv4 Add Firewall Rule and Edit Firewall Rule Commands
- IPv4 General Firewall Commands
- IPv6 Firewall Commands
- Attack Check Commands
- Session Limit, Time-Out, and Advanced Commands
- Address Filter and IP/MAC Binding Commands
- Port Triggering Commands
- UPnP Command
- Bandwidth Profile Commands
- Content Filtering Commands
- 5. System Mode Configuration Commands
- 6. Dot11 Mode Configuration Commands
- 7. VPN Mode Configuration Commands
- IPSec VPN Wizard Command
- IPSec IKE Policy Commands
- IPSec VPN Policy Commands
- IPSec VPN Mode Config Commands
- SSL VPN Portal Layout Commands
- SSL VPN Authentication Domain Commands
- SSL VPN Authentication Group Commands
- SSL VPN User Commands
- SSL VPN Port Forwarding Commands
- SSL VPN Client Commands
- SSL VPN Resource Commands
- SSL VPN Policy Commands
- RADIUS Server Command
- L2TP Server Commands
- 8. Overview of the Show Commands
- 9. Show Commands
- 10. Utility Commands
- CLI Command Index
VPN Mode Configuration Commands
200
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Command example:
FVS318N>
vpn ipsec mode_config configure iphone
vpn-config[modeConfig]>
first_pool_start_ip 10.100.10.1
vpn-config[modeConfig]>
first_pool_end_ip 10.100.10.12
vpn-config[modeConfig]>
dns_server_primary_ip 192.168.1.1
vpn-config[modeConfig]>
pfs_key_group Y
vpn-config[modeConfig]>
dh_group Group2_1024_bit
vpn-config[modeConfig]>
sa_lifetime_type Seconds
vpn-config[modeConfig]>
sa_lifetime 3600
vpn-config[modeConfig]>
encryption_algorithm 3DES
vpn-config[modeConfig]>
integrity_algorithm SHA-1
vpn-config[modeConfig]>
local_ip 192.168.1.0
vpn-config[modeConfig]>
local_subnet_mask 255.255.255.0
vpn-config[modeConfig]>
save
Related show command: show vpn ipsec mode_config setup
sa_lifetime_type Seconds or KBytes Specifies whether the sa_lifetime
keyword is set in seconds or Kbytes.
sa_lifetime seconds or number Depending on the setting of the
sa_lifetime_type keyword, the SA
lifetime in seconds or in KBytes.
encryption_algorithm None, DES, 3DES, AES-128,
AES-192, or AES-256
Specifies the encryption algorithm, if any, to
negotiate the security association (SA):
• None.
• DES. Data Encryption Standard (DES).
• 3DES. Triple DES.
• AES-128. Advanced Encryption Standard
(AES) with a 128-bit key size.
• AES-192. AES with a 192-bit key size.
• AES-256. AES with a 256-bit key size.
integrity_algorithm MD5 or SHA-1 Specifies the authentication (integrity)
algorithm to negotiate the security
association (SA):
• SHA-1. Hash algorithm that produces a
160-bit digest.
• MD5. Hash algorithm that produces a
128-bit digest.
local_ip ipaddress The local IPv4 address to which remote VPN
clients have access. If you do not specify a
local IP address, the wireless VPN firewall’s
default LAN IP address is used.
local_subnet_mask subnet mask The local subnet mask.
Keyword Associated Keyword to
Select or Parameter to Type
Description