ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Table 54. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)

Setting

Description

 

 

Key-Out

The encryption key for the outbound policy. The length of the key depends on

 

the selected encryption algorithm:

 

3DES. Enter 24 characters.

 

None. Key does not apply.

 

DES. Enter 8 characters.

 

AES-128. Enter 16 characters.

 

AES-192. Enter 24 characters.

 

AES-256. Enter 32 characters.

 

 

SPI-Outgoing

The Security Parameters Index (SPI) for the outbound policy. Enter a

 

hexadecimal value between 3 and 8 characters (for example, 0x1234).

 

 

Integrity Algorithm

From the drop-down list, select one of the following two algorithms to be used in

 

the VPN header for the authentication process:

 

SHA-1. Hash algorithm that produces a 160-bit digest. This is the default

 

setting.

 

MD5. Hash algorithm that produces a 128-bit digest.

Key-In

The integrity key for the inbound policy. The length of the key depends on the

 

selected integrity algorithm:

 

MD5. Enter 16 characters.

 

SHA-1. Enter 20 characters.

Key-Out

The integrity key for the outbound policy. The length of the key depends on the

 

selected integrity algorithm:

 

MD5. Enter 16 characters.

 

SHA-1. Enter 20 characters.

Auto Policy Parameters

 

Note: These fields apply only when you select Auto Policy as the policy type.

SA Lifetime

The lifetime of the security association (SA) is the period or the amount of

 

transmitted data after which the SA becomes invalid and needs to be

 

renegotiated. From the drop-down list, select how the SA lifetime is specified:

 

Seconds. In the SA Lifetime field, enter a period in seconds. The minimum

 

value is 300 seconds. The default setting is 3600 seconds.

 

KBytes. In the SA Lifetime field, enter a number of kilobytes. The minimum

 

value is 1920000 KB.

Encryption Algorithm

From the drop-down list, select one of the following five algorithms to negotiate

 

the security association (SA):

 

3DES. Triple DES. This is the default algorithm.

 

None. No encryption algorithm.

 

DES. Data Encryption Standard (DES).

 

AES-128. Advanced Encryption Standard (AES) with a 128-bit key size.

 

AES-192. AES with a 192-bit key size.

 

AES-256. AES with a 256-bit key size.

 

 

Virtual Private Networking Using IPSec and L2TP Connections

237

Page 237
Image 237
NETGEAR FVS318N manual 237, Auto Policy Parameters