10/100 16-Port VPN Router

Encryption. Select a method of encryption, DES or 3DES. The encryption method determines the length of the key used to encrypt or decrypt ESP packets. DES uses 56-bit encryption, and 3DES uses 168-bit encryption. 3DES is recommended because it is more secure. Make sure both ends of the VPN tunnel use the same encryption method.

Authentication. Select a method of authentication, MD5 or SHA. The authentication method determines how the ESP packets are validated. MD5 is a one-way hashing algorithm that produces a 128-bit digest. SHA is a one-way hashing algorithm that produces a 160-bit digest. SHA is recommended because it is more secure. Make sure both ends of the VPN tunnel use the same authentication method.

Encryption Key. This field specifies a key used to encrypt and decrypt IP traffic. Enter a key of hexadecimal values in the Encryption Key field. If you selected DES as the encryption method, then the Encryption Key must be 16-bit, which requires 16 hexadecimal values. If you do not enter enough hexadecimal values, then the rest of the Encryption Key will be automatically completed with zeroes, so the Encryption Key will be 16-bit. If you selected 3DES as the encryption method, then the Encryption Key must be 48-bit, which requires 48 hexadecimal values. If you do not enter enough hexadecimal values, then the rest of the Encryption Key will be automatically completed with zeroes, so the Encryption Key will be 48-bit. Make sure both ends of the VPN tunnel use the same Encryption Key.

Authentication Key. This field specifies a key used to authenticate IP traffic. Enter a key of hexadecimal values in the Authentication Key field. If you selected MD5 as the authentication method, then the Authentication Key must be 32-bit, which requires 32 hexadecimal values. If you do not enter enough hexadecimal values, then the rest of the Encryption Key will be automatically completed with zeroes, so the Authentication Key will be 32-bit. If you selected SHA1 as the authentication method, then the Authentication Key must be 40-bit, which requires 40 hexadecimal values. If you do not enter enough hexadecimal values, then the rest of the Authentication Key will be automatically completed with zeroes, so the Authentication Key will be 40-bit. Make sure both ends of the VPN tunnel use the same Authentication Key.

Click the Save Settings button to save your changes, or click the Cancel Changes button to undo the changes.

Advanced

For most users, the settings on the VPN page should suffice; however, the Router provides advanced IPSec settings for advanced users. Click the Advanced button to view the Advanced settings, which are available only for VPN tunnels using the IKE with Preshared Key mode.

Aggressive Mode. There are two types of Phase 1 exchanges, Main Mode and Aggressive Mode.

Aggressive Mode requires half of the main mode messages to be exchanged in Phase 1 of the SA exchange. If network security is preferred, leave the Aggressive Mode checkbox unchecked. If network speed is preferred,

Chapter 6: Setting up and Configuring the Router

Figure 6-70: IKE with Preshared Key - Advanced

58

VPN Tab - Gateway to Gateway

Page 69
Image 69
Linksys RV016 manual IKE with Preshared Key Advanced

RV016 specifications

The Linksys RV016 is a robust VPN router designed for small to medium-sized businesses, providing secure and reliable network connectivity. This device offers versatile features, catering to the demands of advanced users while maintaining ease of use for those less experienced with networking technologies.

One of the standout characteristics of the Linksys RV016 is its ability to handle multiple WAN connections. It features dual WAN ports, which enable load balancing and failover support. This ensures that in the event one internet connection fails, the other takes over seamlessly, minimizing downtime and enhancing productivity. The RV016 is equipped with eight Ethernet ports, providing sufficient connectivity for various devices within an office environment.

Security is a paramount consideration in the design of the RV016. The device supports a robust VPN (Virtual Private Network) capability, allowing secure remote access for employees working from home or traveling. The router supports both IPSec and PPTP VPN protocols, ensuring versatile and secure communication channels. Additionally, it offers advanced firewall features, including stateful packet inspection (SPI) and denial-of-service (DoS) attack prevention, which safeguard the network from unauthorized access and external threats.

Linksys has also incorporated Quality of Service (QoS) features into the RV016, allowing users to prioritize their network traffic. This is particularly useful for businesses that rely on voice over IP (VoIP) services or have high bandwidth applications, ensuring that critical applications receive the necessary bandwidth for optimal performance.

The RV016 supports a variety of network management protocols, including DHCP, DNS, and static routing, making it easy to integrate into existing network infrastructures. Its web-based interface simplifies configuration and management, enabling IT staff to efficiently set up network parameters without the need for extensive training.

In summary, the Linksys RV016 stands out as a feature-rich VPN router that combines security, reliability, and ease of use. Its multiple WAN support, advanced security features, and network management capabilities make it an ideal choice for businesses seeking a dependable networking solution. Whether handling remote access or managing network performance, the RV016 provides the necessary tools to keep business operations running smoothly.