Cisco Systems RV042G, RV016 manual Advanced settings for IKE with Preshared Key

-Minimum Preshared Key Complexity: Check the Enable box if you want to enable the Preshared Key Strength Meter.

-Preshared Key Strength Meter: If you enable Minimum Preshared Key Complexity, this meter indicates the preshared key strength. As you enter a preshared key, colored bars appear. The scale goes from red (weak) to yellow (acceptable) to green (strong).

TIP: Enter a complex preshared key that includes more than eight characters, upper- and lowercase letters, numbers, and symbols such as -*^+=.

•Advanced settings for IKE with Preshared Key

When the Keying Mode is set to IKE with Preshared Key mode, advanced settings are available. For most users, the basic settings should suffice; advanced users can click Advanced + to view the advanced settings. To hide these settings, click Advanced - .

Important: If you change the Advanced settings on one router, be sure to enter the same settings on the other router.

-Aggressive Mode: Two modes of IKE SA negotiation are possible: Main Mode and Aggressive Mode. If network security is preferred, Main Mode is recommended. If network speed is preferred, Aggressive Mode is recommended. You can adjust this setting if the Remote Security Gateway Type is IP Only or one of the IP + types. Check this box to enable Aggressive Mode, or uncheck the box to disable Aggressive Mode and use Main Mode.

NOTE: If the Remote Security Gateway Type is one of the Dynamic IP types, Aggressive Mode is required. The box is checked automatically, and this setting cannot be changed.

-Compress (Support IP Payload Compression Protocol (IP Comp)): IP Comp is a protocol that reduces the size of IP datagrams. Check the box to enable the router to propose compression when it initiates a connection. If the responder rejects this proposal, then the router will not implement compression. When the router works as a responder, it will always accept compression, even if compression is not enabled. If you enable this feature for this router, also enable it on the router at the other end of the tunnel.

-Keep-Alive:This feature enables the router to attempt to automatically re-establish the VPN connection if it is dropped. Check the box to enable this feature, or uncheck the box to disable it.