Manualshelf

User manual

ManualsBrandsProSoft Technology ManualsComputer equipmentRLXIC-EH
51525354555657585960
RLXIC-EV Intelligent Cellular Configuring your RLXIC-EV
RadioLinx® Intelligent Cellular Ethernet Gateway for Verizon User Manual
Page 60 of 104 ProSoft Technology, Inc.
March 10, 2010
Field AT Command Description
My Identity
If these fields are left blank, My Identity will default to the
WAN IP address assigned by the carrier and Peer Identity
will default to the VPN Server IP. For a fully qualified
domain name (FQDN), these values should be preceded
by an '@'character (@www.domain.com). For user-FQDN,
these values should include a username
(user@domain.com)
Peer Identity
Required in some configurations to identify the client or
peer side of a VPN connection. This defaults to the VPN
server IP address.
Negotiation
Mode
Main Mode or Aggressive. To operate the onboard VPN
under Aggressive mode, enable this configuration. By
default, the RLXIC-EV operates under Main Mode.
Aggressive mode offers increased performance at the
expense of security.
IKE Encryption
Algorithm
DES, 3DES, or AES. Determines the type and length of
encryption key used to encrypt/decrypt ESP
(Encapsulating Security Payload) packets. 3DES supports
168-bit encryption. AES (Advanced Encryption Standard)
is supports 128 bit encryption.
IKE
Authentication
Algorithm
SHA1 or MD5. Can be configured with MD5 or SHA1. MD5
is an algorithm that produces a 128-bit digest for
authentication. SHA1 is a more secure algorithm that
produces a 160-bit digest.
IKE Key Group
IKE SA Life
Time
180 to 86400. Determines how long the VPN tunnel is
active in seconds. The default value is 28,800 seconds, or
8 hours
Local Address
Type
Local Address
Local Address –
Netmask
Remote Address
Type
Remote Address
Remote Address
– Netmask
The default configuration is 0.0.0.0/0, which will direct all
traffic over the GRE tunnel.
Perfect Forward
Secrecy
Yes or No. Provides additional security through a DH
shared secret value. When this feature is enabled, one key
cannot be derived from another. This ensures previous and
subsequent encryption keys are secure even if one key is
compromised.
IPSec
Encryption
Algorithm
DES, 3DES, or AES. Determines the type and length of
encryption key used to encrypt/decrypt ESP
(Encapsulating Security Payload) packets. 3DES supports
168-bit encryption. AES (Advanced Encryption Standard)
supports 128 bit encryption.
IPSec
Authentication
Algorithm
SHA1 or MD5. Can be configured with MD5 or SHA1. MD5
is an algorithm that produces a 128-bit digest for
authentication. SHA1 is a more secure algorithm that
produces a 160-bit digest.