Manuals / Sony / Computer Equipment / Network Router

Sony 2140847 Command Description Perfect Forward, Secrecy, IPSec Key Group, IPSec SA Life Time

Models: 2140847

1 63

Download 63 pages 4.89 Kb

Page 45

	Configuring AirLink Helix


Command	Description

Perfect Forward	Yes or No. Provides additional security through a DH shared secret value. When this
Secrecy	feature is enabled, one key cannot be derived from another. This ensures previous and
	subsequent encryption keys are secure even if one key is compromised.

IPSec Key Group	DH1, DH2, or DH5. Determines how the Helix VPN creates an SA with the VPN server. The
	DH (Diffie-Hellman) key exchange protocol establishes pre-shared keys during the phase 1
	authentication. Helix supports three prime key lengths, including Group 1 (768 bits), Group
	2 (1,024 bits), and Group 5 (1,536 bits).

IPSec SA Life Time	180 to 86400. Determines how long the VPN tunnel is active in seconds. The default value
	is 28,800 seconds, or 8 hours.

	VPN 2
	The Helix can act as a Generic Routing Encapsulation (GRE) endpoint, providing
	a means to encapsulate a wide variety of network layer packets inside IP
	tunneling packets. With this feature you can reconfigure IP architectures without
	worrying about connectivity. GRE creates a point-to-point link between routers on
	an IP network.
	The VPN 2 section allows configuration of the GRE tunnel on the Helix box.

Figure 8-2: ACEmanager: VPN 2 - VPN/IPSec

Figure 8-3: ACEmanager: VPN 2 - VPN/IPSec - GRE Tunnel

Command	Description

VPN 2 Type	Tunnel Disabled or GRE Tunnel. Enabling the GRE Tunnel will expose other options for
	configuring the tunnel.

VPN Status	Disabled, Connected or Not Connected. Indicates the status of the GRE tunnel on the Helix
	box.

VPN Gateway	The IP address of the device that this client connects to. This IP address must be open to
Address	connections from the Helix Box.

Rev 3.0D May.10

39

Image 45

Sony 2140847 Command Description Perfect Forward, Secrecy, IPSec Key Group, IPSec SA Life Time, Configuring the tunnel

Contents

AirLink Helix Page Important Notice Safety and Hazards Regulatory Information Open Source · Readme Patents Copyright TrademarksAirLink Helix documentation draft created Contact InformationAirLink Helix documentation revised USB Chapter addedContents Configuring WAN/Cellular Configuring Security Regulatory Information Introduction What’s Included with the AirLink Helix?What Else Do You Need to Get Started? Cdma Getting Going the quick versionConnecting Through Ethernet Connecting a Computer to the AirLink 2 HelixWhere to Find More Help Connecting Through Wi-FiPhysical Interfaces Hardware OverviewTurning On the AirLink Helix Status LightsLEDs Cellular AntennasCellular Antennas Reset Button Wi-Fi AntennasSIM Slot Power ConnectorPushing SIM in to the SIM slot Remove the SIMUSB modems Compass 895 and Compass USB ConnectionACEmanager Status About USB Modem connectionPage AirLink Helix User Guide 2140847 ACEmanager Configuring AirLink HelixStatus HomeWAN/Cellular LAN/WiFi Address / status of the WAN / LAN port Address / status of the LAN portWill show Mixed or G-Only Number of connected clientsSecurity ServicesAbout Configuring WAN/Cellular WAN/CellularNetwork Credentials WAN Failover Setup How it works IP PassthroughConfiguring LAN/WiFi LAN/WiFiAddressing/VLAN WiFi Global Shared WEP WPA/WPA2 Personal Optional and used when the primary server is not available When the primary is unavailableWPA Enterprise Disabled or Enabled. By default this is set to Disabled WiFiGlobal DNS Primary Global DNS AddressAlternate Secondary Command Description Alternate PrimaryGroup ID PriorityAirLink Helix User Guide 2140847 VPN Negotiation Mode Command Description VPN 1 TypeIKE Authentication IPSec AuthenticationConfiguring the tunnel Command Description Perfect ForwardSecrecy IPSec Key GroupRouter hops not in seconds GRE TTLConfiguring Security SecurityPort Forwarding and DMZ MAC Filtering Port Filtering OutboundConfiguring Services ServicesACEnet Dynamic DNS ACEmanagerLanding Management SnmpData ACEmanager Services Management SnmpConfiguring Admin AdminDefaults Debug Command Description Debug EnabledDebug Output Baud RateLog ACEmanager Admin LogAirLink Helix User Guide 2140847 Technical Specifications AdministrationRouting Physical HardwareRegulatory Information Federal Communications CommissionIndustry Canada Antenna Considerations RF ExposureWeee Notice AirLink Helix User Guide 2140847