Asante Technologies VR2004 user manual Manual Mode, Pre-Shared Key, Key Life, IKE Life Time

Page 47

4.3.3 Pre-Shared Key

IKE can establish a key for the two ends of the tunnel to use to en- crypt the traffic bound for the other network, but it cannot guarantee that the router on the other end of the tunnel can be trusted. The Pre-Shared key is used to establish that trust. Enter an alphanu- meric name to be the Pre-Shared Key (max. length is 256 charac- ters). The value must match the key name of the remote device.

4.3.4 Key Life

The Key Life value sets the amount of time until the router renegoti- ates the key, thereby decreasing the likelihood of a security breach. The default is 3600 seconds (one hour).

4.3.5 IKE Life Time

This value sets the amount of time until the router renegotiates the IKE security association. The default is 28800 seconds (8 hours).

4.4 Manual Mode

Important! Asanté recommends that only experienced users at- tempt to configure this advanced feature.

Many ISPs will not allow connection through their firewalls using the IKE mode. In this case you must select the Manual Mode to create the Secure Association.

User’s Manual	47

Image 47

Contents User’s Manual FriendlyNET VR2004 SeriesBefore You Start Mac OS Determine Your TCP/IP SettingsQuick Start Guide Item No TCP/IP Control Panel Description Your Setting Windows 98/Me Description Your SettingWindows NT/2000 Item No IP Configuration Description Your SettingWindows XP Red Hat Linux Install The HardwareConfigure Your Router FriendlyNET VPN Security Router Table of Contents FriendlyNET VPN Security Router Introduction FeaturesIsakmp IPSec SecurityFront and Rear Panel Descriptions Package ContentsSystem Requirements LED Setup Wizard ConfigurationISP Settings Time Zone SettingsDevice IP Settings Additional ISP Settings Enable Pptp Client Wireless Settings VR2004AC only Encryption Modem SettingsWEP Security and Apple Airport Wireless Cards Save and Restart VPN SettingsUp and running Not working ---------l l Device InformationDevice Status System Tools FriendlyNET VPN Security Router Dhcp Server Settings Advanced SettingsIP Address Reservation Virtual Server SettingsIP Address Pool Range Page Wireless Access Control Settings Static Routing Table Routing SettingsDynamic Routing Settings LAN Filter Settings Filter SettingsIP Address Range 172.16.203.1 to WAN Filter SettingsIP Address Range 192.168.123.10 to Password Settings Administrative SettingsSystem Parameters Remote System AdministrationSystem Log Miscellaneous Dynamic DNS Settings Mail Alert URL Filter SettingsSave and Restart FriendlyNET VPN Security Router Network-to-Network VPN ConfigurationLAN VR2004 ‘A’ West end Connection Name West-East Remote IP Network Remote IP Netmask Remote Gateway IP Mode 1- Dynamic IP AddressMode 2-Static fixed IP Address Client-to-NetworkRemote IP Network IPSec Keying IKE ModeEncryption Protocol Perfect Forward SecureIKE Life Time Manual ModePre-Shared Key Key LifeEncryption Key Authentication ProtocolIncoming and Outgoing SPI Security Parameter Index Authentication Key FriendlyNET VPN Security Router Appendix A. Warranty Statement and FriendlyCare Support Asanté Forums On-line SupportPersonalized Support Appendix B. FCC Statement FriendlyNET VPN Security Router Troubleshooting with the Status LEDs Appendix C. TroubleshootingUsing Macintosh WhatRoute Problems Accessing RouterUsing Windows Ping Cabling Problems Other hints about cabling Macintosh Appendix D. Renewing Client IP AddressesWindows 98/Me Windows NT/2000FriendlyNET VPN Security Router Port Service Appendix E. Service PortsFriendlyNET VPN Security Router Application Software Compatibility Appendix F. Hardware and Software CompatibilityProtocols Supported Network and Client Platforms compatibilityFriendlyNET VPN Security Router Software Overview Appendix G. SpecificationsAdvanced Settings Applications Interoperability Performance Red Hat Linux Appendix H. Configuring a System Log ServerMac OS Click on the Firewall tab and click New... to add a new rule Microsoft Windows Optimum Performance Appendix I. Your 802.11b Wireless NetworkSecurity Administrator’s PasswordWEP Encryption MAC Address ControlSales