120CHAPTER 5: CONFIGURING THE ROUTER

5Select the Local Party ID, and then enter the ID, Network Address and Subnet Mask of the Local Secure Group. The network address of the local secure group is usually the network address of the local network.

6From the Key Management drop-down menu, select either IKE Main Mode or IKE Aggressive Mode.

7SA (Security Association) attribute - select the option to use for SA attribute.

8In the Pre-shared Key field, enter the password for the connection. This must be unique for each connection rule that you create.

9Select MD5, or SHA1 from the Authentication Algorithm drop-down menu. Both ends of the connection must use the same value.

10Select DES, 3DES, Null, AES-128,AES-192, or AES-256 from the Encrypt Algorithm drop-down menu. Both ends of the connection must use the same value.

11Enter the Key lifetime, in seconds. The default is 3600 seconds. The value must be at least 300 seconds.

12PFS - Perfect Forward Secrecy, check this box, then the Diffie-Hellman Group options become available. The use o PFS is optional, enabling PFS will add another layer of encryption security.

13Diffie-Hellman Group - select the group to use for Diffie-Hellman key exchange.

14Check the IKE Keep Alive box to enable this function. The time value is the number of seconds that the router waits between sending IKE keepalive packets.

15Click Apply.

Page 121 Page 123
Page 122
Image 122
3Com WL-603 manual Configuring the Router
Page 121 Page 123
Top Page Image Contents