Configuring GroupVPN Policy on the SonicWALL

6Click on the Proposals tab.

7In the IKE (Phase 1) Proposal section, select the following settings: Group 2 from the DH Group menu.

3DES from the Encryption menu. SHA1 from the Authentication menu.

Leave the default setting, 28800, in the Life Time (seconds) field. This setting forces the tunnel to renegotiate and exchange keys every 8 hours.

8In the IPSec (Phase 2) Proposal section, select the following settings: ESP from the Protocol menu.

3DES from the Encryption menu. MD5 from the Authentication menu.

Select Enable Perfect Forward Secrecy if you want an additional Diffie-Hellman key exchange as an added layer of security. Then select Group 2 from the DH Group menu.

Leave the default setting, 28800, in the Life Time (seconds) field. This setting forces the tunnel to renegotiate and exchange keys every 8 hours.

SONICWALL SONICOS STANDARD 3.0 ADMINISTRATORS GUIDE

209

Page 227 Page 229
Page 228
Image 228
SonicWALL 3 manual 209
Page 227 Page 229
Top Page Image Contents