C o n f i g u r e D i g i d e v i c e s

7Specify the Internet Key Exchange (IKE) Security Settings for the VPN connection. Internet Key Exchange (IKE) negotiates IPSec security associations (SA). The IPSec systems must authenticate themselves to each other and establish ISAKMP (IKE) shared keys. SAs are relationships between two or more entities or peers that describe how they will use security services to communicate securely.

You can use either the default security policies or custom policies.

Use the default policies to negotiate Internet Key Exchange (IKE) security settings: The default security policies that are negotiated and used to secure the SAs are:

Default Security Policies

Encryption

Authentication

SA Lifetime

30DES (192-bit)

SHA1

86400 secs

Use the following policies to negotiate Internet Key Exchange (IKE) security settings: If the default settings do not match the VPN and IKE SA configuration of the remote peers, or if additional policies are required, enable this setting, then click Add to add one or more security policies.

Internet Key Exchange security policy settings include:

Encryption: The encryption algorithm and key length used in IKE negotiations for encrypting data. Supported encryption algorithms are DES, 3-DES, and AES, which also includes three available key lengths for greater security.

Authentication: The authentication algorithm used in IKE negotiations to authenticate IKE peers and SAs. Supported authentication algorithms are MD5 and SHA1.

SA Lifetime: Determines how long a SA policy is active in seconds. The Security Association (SA) lifetime determines how long a SA policy is active in seconds. After the IKE SA has been negotiated, the SA lifetime begins. Once the lifetime has completed, a new set of SA policies are negotiated using IKE phase 2 negotiation.

When all the VPN Internet Key Exchange settings have been entered, click Apply.

1 0 7

Page 107
Image 107
Digi X2 manual Default Security Policies

X2 specifications

Digi X2 and X1 are advanced cellular IoT (Internet of Things) gateways that provide an innovative solution for industrial applications, smart cities, and remote asset management. Both devices equip users with the means to connect, monitor, and control a wide variety of assets without the limitations traditionally imposed by wired connections.

Digi X2, designed for complex IoT demands, features dual SIM slots which ensures uninterrupted connectivity through automatic failover. This makes it particularly valuable for critical applications where connectivity is non-negotiable. Additionally, the X2 is equipped with LTE-M and NB-IoT support, enabling extensive coverage in areas where other networks may struggle.

On the software side, the Digi X2 supports Digi Remote Manager, a powerful tool that allows users to monitor, manage, and deploy devices remotely. This cloud-based management system simplifies the overall management of IoT devices by providing real-time insights, easy configuration changes, and over-the-air updates, saving both time and resources.

In contrast, the Digi X1 serves as an entry-level model that balances performance with cost-effectiveness. It supports LTE connectivity, providing a reliable connection suitable for a variety of applications. The X1 also offers seamless integration with existing networks, allowing users to leverage their current infrastructure while expanding their IoT capabilities.

Both Digi X2 and X1 are designed with ruggedness in mind, making them suitable for deployment in harsh environments. They are engineered to withstand extreme temperatures and vibrations, ensuring reliability even in demanding industrial settings.

Another notable characteristic of these devices is their extensive input/output (I/O) capabilities, which enable them to interact with sensors, machines, and other types of devices. This versatility allows for a broad spectrum of applications, from monitoring temperatures in remote locations to tracking assets across geographic boundaries.

In summary, the Digi X1 and X2 provide robust, reliable, and scalable solutions for modern IoT implementations. With their advanced cellular connectivity, cloud management capabilities, and durable design, they are poised to enhance connectivity across industries, driving efficiencies and enabling smarter operations. Whether for critical industrial applications or efficient asset management, Digi's offerings are tailored to meet the diverse needs of today's IoT landscape.