NETGEAR FVS318N Table 54. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)

Virtual Private Networking Using IPSec and L2TP Connections

237

ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N

Key-Out The encryption key for the outbound policy. The length of the key depends on

the selected encryption algorithm:

• 3DES. Enter 24 characters.

• None. Key does not apply.

• DES. Enter 8 characters.

• AES-128. Enter 16 characters.

• AES-192. Enter 24 characters.

• AES-256. Enter 32 characters.

SPI-Outgoing The Security Parameters Index (SPI) for the outbound policy. Enter a

hexadecimal value between 3 and 8 characters (for example, 0x1234).

Integrity Algorithm From the drop-down list, select one of the following two algorithms to be used in

the VPN header for the authentication process:

• SHA-1. Hash algorithm that produces a 160-bit digest. This is the default

setting.

• MD5. Hash algorithm that produces a 128-bit digest.

Key-In The integrity key for the inbound policy. The length of the key depends on the

selected integrity algorithm:

• MD5. Enter 16 characters.

• SHA-1. Enter 20 characters.

Key-Out The integrity key for the outbound policy. The length of the key depends on the

selected integrity algorithm:

• MD5. Enter 16 characters.

• SHA-1. Enter 20 characters.

Auto Policy Parameters

Note: These fields apply only when you select Auto Policy as the policy type.

SA Lifetime The lifetime of the security association (SA) is the period or the amount of

transmitted data after which the SA becomes invalid and needs to be

renegotiated. From the drop-down list, select how the SA lifetime is specified:

• Seconds. In the SA Lifetime field, enter a period in seconds. The minimum

value is 300 seconds. The default setting is 3600 seconds.

• KBytes. In the SA Lifetime field, enter a number of kilobytes. The minimum

value is 1920000 KB.

Encryption Algorithm From the drop-down list, select one of the following five algorithms to negotiate

the security association (SA):

• 3DES. Triple DES. This is the default algorithm.

• None. No encryption algorithm.

• DES. Data Encryption Standard (DES).

• AES-128. Advanced Encryption Standard (AES) with a 128-bit key size.

• AES-192. AES with a 192-bit key size.

• AES-256. AES with a 256-bit key size.

Table 54. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)

Setting Description