D-Link DIR-455 manual

Section 3 - Configuration

PFS Group: Three groups can be selected: None, Group 1,

Group 2, Group 5.

None: No PFS group

Group 1: 768-bit Diffie-Hellman prime modulus

Group 2: 1024-bit Diffie-Hellman prime modulus

Group 5: 1536-bit Diffie-Hellman prime modulus

Aggressive Mode: Enabling this mode will accelerate the initial tunnel setup, but the device will suffer from less security in the meantime. Hosts at both ends of the tunnel must support this mode so as to establish the tunnel properly.

Preshared Key: The first key that supports IKE mechanism of both VPN gateway and VPN client host for negotiating further security keys. The pre-shared key must be same on both VPN gateways and clients.

Remote ID: The Type and the Value must be the same as the Type and the Value of the Local ID of the remote VPN gateway.

Local ID: The Type and the Value must be the same as the Type and the Value of the Remote ID of the remote VPN gateway.

Keep Alive (Ping IP Input the IP address of remote host that exist in the remote side of the VPN tunnel (Ex. You can input the LAN Address): IP address of remote VPN gateway). The device will start to Ping the remote host when there is no traffic within the VPN tunnel. If the device is no longer receiving an ICMP response from remote host, it will terminate the

VPN tunnel automatically.