•Encryption algorithm: 3DES
•Hash algorithm: MD5
•
•Maximum lifetime: 28,800 seconds (8 hours)
•Maximum Quick Modes: 100
You can specify alternative values for the above parameters in the ipsec_config add ike command.
On Windows XP systems with SP2, IP Security policies are
Use the following procedure to modify the Windows IKE SA parameters:
1.From the Policy Properties dialog box, select the General tag. The IP Security configuration utility opens the General dialog box (Figure 13).
Click Advanced4. (Ignore the field labeled Check for policy changes. This field is used only when the policy is stored in an Active Directory.)
Figure 13 General Policy Properties Dialog Box
2.The IP Security configuration utility opens the Key Exchange Settings dialog box (Figure 14).
3.By default, the first Windows XP proposal has the following parameters: Encryption - 3DES; Hash - SHA1;
4.On Windows 2003 servers, this button is labeled Settings.
Configuring a Windows