Field

Phase 1 encryption

Phase 1 authentication

Phase 1 SA lifetime

How Do I Configure My DOCSIS Residential Gateway?

Description

Allows you to select the form of encryption to secure the VPN connection between endpoints. Select from the following five encryption types:

ƒDES

ƒ3DES

ƒAES-128

ƒAES-192

ƒAES-256

You may choose any encryption type as long as the other end of the VPN tunnel uses the same method

Allows you to select an authentication type for another level of security. Select one of the following authentication types:

ƒMD5

ƒSHA

You may choose either authentication type as long as the other end of the VPN tunnel uses the same method

Note: SHA is recommended because it is more secure.

Allows you to enter the number of seconds for an individual rotating key to last until a re-key negotiation between each endpoint occurs. Smaller lifetimes are generally more secure since it would give a hacker a smaller amount of time to try to crack the key. However, key negotiation does take up bandwidth, so network throughput is sacrificed with small lifetimes. The default setting is 28,800 seconds.

Phase 2 encryption

Allows you to select the form of encryption to secure the VPN

 

connection between endpoints. Select from the following five

 

encryption types:

ƒ

ƒ

ƒ

ƒ

ƒ

DES

3DES

AES-128

AES-192

AES-256

You may select any form of encryption as long as long as the other end of the VPN tunnel uses the same method

Note: 3DES encryption is commonly used, but AES is recommended because it is very difficult to crack

4024320 Rev A

63

Page 63
Image 63
Cisco Systems DPC/EPC2325 DOCSIS important safety instructions Field