Prestige 334 User’s Guide
Figure 180 Menu 27.1.1.1 IKE Setup
Menu 27.1.1.1 - IKE Setup
Phase 1
Negotiation Mode= Main
Encryption Algorithm= DES
Authentication Algorithm= MD5
SA Life Time (Seconds)= 28800
Key Group= DH1
Phase 2
Active Protocol= ESP
Encryption Algorithm= DES
Authentication Algorithm= SHA1
SA Life Time (Seconds)= 28800
Encapsulation= Tunnel
Perfect Forward Secrecy (PFS)= None
Press ENTER to Confirm or ESC to Cancel:
Press Space Bar to Toggle.
The following table describes the fields in this menu.
Table 106 Menu 27.1.1.1 IKE Setup
FIELD | DESCRIPTION |
|
|
Phase 1 |
|
Negotiation | Press [SPACE BAR] to choose from Main or Aggressive and then press [ENTER]. |
Mode | See earlier for a discussion of these modes. Multiple SAs connecting through a |
| secure gateway must have the same negotiation mode. |
PSK | Prestige gateways authenticate an IKE VPN session by matching |
| |
| |
| ing spaces, but trailing spaces are truncated. |
| Both ends of the VPN tunnel must use the same |
| “PYLD_MALFORMED” (payload malformed) packet if the same |
| not used on both ends. |
Encryption | When DES is used for data communications, both sender and receiver must know |
Algorithm | the same secret key, which can be used to encrypt and decrypt the message or to |
| generate and verify a message authentication code. Prestige DES encryption algo- |
| rithm uses a |
| Triple DES (3DES), is a variation on DES that uses a |
| is more secure than DES. It also requires more processing power, resulting in |
| slightly increased latency and decreased throughput. |
| Press [SPACE BAR] to choose from 3DES or DES and then press [ENTER]. |
Chapter 34 VPN/IPSec Setup | 322 |