Asante Technologies VR2004 Incoming and Outgoing SPI Security Parameter Index, Encryption Key

The following sections describe the parameters that will need to be entered for a manually keyed tunnel.

4.4.1Incoming and Outgoing SPI (Security Parameter Index)

The SPI is a 32-bit field that the router will use to identify the Secure Association. Enter a different 8 hexadecimal digit (such as “12abcdef” or “01234567”) into each the Incoming SPI and Outgo- ing SPI fields.

The incoming SPI MUST match the outgoing SPI at the other end of the tunnel. Similarly, the outgoing SPI value MUST match the in- coming SPI at the other end of the tunnel.

4.4.2 Encryption Protocol

The router supports two encryption algorithms: DES and 3DES. Use the drop down menu to select a protocol (Selecting NULL disables encryption).

Note: The protocol chosen must match that used by the remote de- vice.

4.4.3 Encryption Key

This string is used as a key to encrypt and decrypt the data trans- mitted. Use an alpha-numeric value of 24 characters for 3DES (max. length for DES is 8 characters).

Note: The value entered must match that used by the remote de- vice.

4.4.4 Authentication Protocol

The router supports two authentication algorithms, MD5 and SHA-1. Use the drop down menu to select the desired protocol.

Note: The selected protocol must match that used by the remote device.