Compatible Systems 2+ manual Set an IKE Policy

Page 34

28

Chapter 6 - Basic Configuration Guide

 

 

6. Set an IKE Policy.

There are two phases to the IKE negotiation. During Phase 1 negotia- tion, the IntraPort and Client must authenticate each other. The IKE Policy dialog box controls this Phase 1 negotiation. Phase 2 negotiation involves the setup of an individual tunnel connection and is controlled by the VPN Group Configuration, documented in Step 7.

IKE Policy

To access this dialog box, select IKE Policy under Global in the Device View.

These parameters specify a protection suite for the IKE negotiation between the IntraPort server and client. There are three pieces to the IKE protection suite.

1.The first piece of each option is the authentication algorithm to be used for the negotiation. MD5 is the message-digest 5 hash algo- rithm. SHA is the Secure Hash Algorithm, which is considered to be somewhat more secure than MD5.

2.The second piece is the encryption algorithm. DES (Data Encryp- tion Standard) uses a 56-bit key to scramble the data. 3DES uses three different keys and three applications of the DES algorithm to scramble the data.

3.The third piece is the Diffie-Hellman group to be used for key exchange. Because larger numbers are used by the Group 2 (G2) algorithm, it is more secure than Group 1 (G1).

A.You can specify one or more protection suites by checking as many of the boxes as you wish, or leave the default setting.

B.Click OK.

Image 34
Contents Page Page Introduction Network InstallationGetting Help with the IntraPort 2/2+ VPN Access Server Getting StartedAppendix a Shipping Defaults Basic Configuration GuideParameters Appendix F Terms and Conditions InformationSystems Pin Outs for DB-25 Male to DB-25 Female RS-232 DataPage Introduction About the IntraPort 2/2+ VPN Access ServerIntraPort 2/2+ VPN Access Server Installa- tion Overview IntroductionCommand Line Preparation Network InstallationCompatiView Software Installation Basic Configuration GuideIntroduction Alternate Protocols and Security Parameters AppendicesPage Getting Started Warranty and ServiceGetting Help with the IntraPort 2/2+ VPN Access Server Few NotesNeeded for Installation Supplied with the IntraPort 2/2+ VPN Access ServerWhat You Will Need To Get Started Ethernet Connection Requirements VPN Client Software RequirementsPage Connecting the Server to the Ethernet Network InstallationPlacing the Server Connecting a Management Console Powering Up the ServerCompatiView for Windows System RequirementsInstallation and Operation Transport Protocols and CompatiViewCompatiView Software Installation Page Command Line Management Out-of-Band Command Line ManagementTemporarily Reconfiguring a Host for Command Line Management Setting Up Telnet OperationIP Ethernet 0 section Page Basic Configuration Guide Setup OptionsDiagram of Dual-Ethernet Setup Diagram of Dual-Ethernet SetupDiagram of Single-Ethernet Setup Diagram of Single Ethernet SetupVPN Client Tunnel Settings Configuration Using CompatiViewTurn off AppleTalk and IPX optional Dual Ethernet Single Ethernet TCP/IP Routing Ethernet Single Ethernet Turn IP off on Ethernet Dual Ethernet Set basic IP parameters for EthernetIP Connection Ethernet IP Static Routes Basic Configuration Guide Set an IP Gateway for EthernetDual Ethernet Static Route Single Ethernet Static Route Basic Configuration Guide Basic Configuration Guide Set an IPSec Gateway IPSec GatewaySet an IKE Policy IKE PolicyBasic Configuration Guide Set up VPN Group Configurations VPN Group Configuration General TabVPN Group Configuration IKE Configuration Tab IKE Configuration Transform List Basic Configuration Guide Basic Configuration Guide VPN Group Configuration IPX Connection Tab VPN User Configuration Basic Configuration Guide Set up VPN UsersVPN User Save the configuration to a file and download to the device Add VPN Port Set up the Tunnel PartnerAdd a VPN Port Tunnel Partner VPN #Set up Key Management IKE Key ManagementIKE Configuration Transform List Save the configuration to a file and download to the device Basic Configuration Using Command Line ExampleSingle Ethernet Setup Example Edit IP Static Append Configure general Basic Configuration Guide Set up VPN Group Configurations Configure vpn group basic vpn config Save the Configuration and download it to the device Use the configure command to add a VPN Port Configure tunnel partner vpn Required for IPX IPX ProtocolSuggested for IPX AppleTalk Protocol Setting up Radius AuthenticationSetting the IntraPort for a Radius Server Required for AppleTalkRadius Server User Authentication Settings Setting up SecurID Authentication Setting the IntraPort for an ACE/Server ACE/Server SettingsSaving a Configuration File to Flash ROM Page Appendix a Shipping Defaults Ethernet InterfacesAppendix B Connector and Cable Pin Outs Appendix B Connector and Cable Pin OutsAppendix C Security Dynamics ACE/Server Information Page IntraPort 2/2+ VPN Access Servers LED Patterns IntraPort 2 Connections/Users LEDs Appendix D LED Patterns and Test Switch SettingsIntraPort 2+ Connections/Users LEDs IntraPort 2 Special Indicators IntraPort 2/2+ VPN Access Server Switch SettingsIntraPort 2+ Special Indicators Page Appendix E Downloading Software From Compatible Systems Compatible Systems WWW ServerPage Appendix F Terms Conditions Appendix F Terms and ConditionsPage Appendix F Terms and Conditions

2+, 2 specifications

Compatible Systems 2,2+ is a cutting-edge framework designed to enhance interoperability and compatibility across various technological platforms and systems. Built on a robust foundation, this system aims to simplify the integration of old and new technologies, ensuring organizations can effectively leverage their existing infrastructures while embracing innovations.

One of the primary features of Compatible Systems 2,2+ is its modular architecture. This design allows organizations to implement only the components they need, significantly reducing costs and complexities associated with full-scale system overhauls. It promotes flexibility, enabling businesses to customize solutions according to their specific operational requirements without compromising performance or security.

Another standout characteristic is its adherence to open standards. By supporting widely accepted protocols and formats, Compatible Systems 2,2+ significantly reduces the barriers to integration. This feature facilitates communication between different systems and devices, enabling seamless data exchange and promoting collaboration across varied platforms. Organizations can easily connect disparate systems, fostering a unified operational environment.

The introduction of advanced connectivity features, such as API management and microservices architecture, distinguishes Compatible Systems 2,2+ from traditional systems. This technology allows for more granular control over data flows and interactions, enhancing agility in development and deployment. Organizations can quickly adapt to changing market demands, ensuring they remain competitive in a fast-paced digital landscape.

Security is another critical concern addressed by Compatible Systems 2,2+. The framework incorporates robust security protocols to safeguard data integrity and protect against unauthorized access. With features such as encryption, authentication, and authorization mechanisms, organizations can trust that their sensitive information is well-protected.

Moreover, Compatible Systems 2,2+ includes comprehensive support for analytics and monitoring. By integrating data analytics tools, this system allows organizations to gain insights into system performance and user behavior, facilitating informed decision-making. This capability not only enhances operational efficiency but also aids in predictive maintenance, reducing downtime and improving overall productivity.

In conclusion, Compatible Systems 2,2+ presents a versatile and secure solution for organizations looking to enhance compatibility and interoperability across their technological ecosystems. With its modular architecture, support for open standards, advanced connectivity features, and robust security measures, it stands as a leading choice for businesses aiming to navigate the complexities of modern technology integration successfully. Embracing Compatible Systems 2,2+ can empower organizations to innovate while preserving their valuable technological investments.