Prestige 334 User’s Guide
An added feature of the ESP is payload padding, which further protects communications by concealing the size of the packet being transmitted.
Table 46 AH and ESP
ESP | AH |
|
|
DES (default) | MD5 (default) |
Data Encryption Standard (DES) is a widely used method | MD5 (Message Digest 5) produces a 128- |
of data encryption using a secret key. DES applies a | bit digest to authenticate packet data. |
key to each |
|
3DES | SHA1 |
Triple DES (3DES) is a variant of DES, which iterates three | SHA1 (Secure Hash Algorithm) produces |
times with three separate keys (3 x 56 = 168 bits), | a |
effectively doubling the strength of DES. | data. |
Select DES for minimal security and 3DES for maximum. | Select MD5 for minimal security and SHA- |
| 1 for maximum security. |
15.3 My IP Address
My IP Address is the WAN IP address of the Prestige. If this field is configured as 0.0.0.0, then the Prestige will use the current Prestige WAN IP address (static or dynamic) to set up the VPN tunnel. The Prestige has to rebuild the VPN tunnel if the My IP Address changes after setup.
15.4 Secure Gateway Address
Secure Gateway Address is the WAN IP address or domain name of the remote IPSec router (secure gateway).
If the remote secure gateway has a static WAN IP address, enter it in the Secure Gateway Address field. You may alternatively enter the remote secure gateway’s domain name (if it has one) in the Secure Gateway Address field.
You can also enter a remote secure gateway’s domain name in the Secure Gateway Address field if the remote secure gateway has a dynamic WAN IP address and is using DDNS. The Prestige has to rebuild the VPN tunnel each time the remote secure gateway’s WAN IP address changes (there may be a delay until the DDNS servers are updated with the remote gateway’s new WAN IP address).
157 | Chapter 15 VPN Screens |