4.3.3 Pre-Shared Key

IKE can establish a key for the two ends of the tunnel to use to en- crypt the traffic bound for the other network, but it cannot guarantee that the router on the other end of the tunnel can be trusted. The Pre-Shared key is used to establish that trust. Enter an alphanu- meric name to be the Pre-Shared Key (max. length is 256 charac- ters). The value must match the key name of the remote device.

4.3.4 Key Life

The Key Life value sets the amount of time until the router renegoti- ates the key, thereby decreasing the likelihood of a security breach. The default is 3600 seconds (one hour).

4.3.5 IKE Life Time

This value sets the amount of time until the router renegotiates the IKE security association. The default is 28800 seconds (8 hours).

4.4 Manual Mode

Important! Asanté recommends that only experienced users at- tempt to configure this advanced feature.

Many ISPs will not allow connection through their firewalls using the IKE mode. In this case you must select the Manual Mode to create the Secure Association.

User’s Manual

47

 

Page 47
Image 47
Asante Technologies VR2004 user manual Manual Mode, Pre-Shared Key, Key Life, IKE Life Time