Phase 2 list, Phase 2 basic settings, Phase 2 list phase 2 basic settings – Fortinet 100A User Manual
Page 251
VPN
Phase 2 list
FortiGate-100A Administration Guide
01-28007-0068-20041203
251
2
Follow the general guidelines in these sections:
•
•
“Phase 2 basic settings” on page 251
•
“Phase 2 advanced options” on page 252
For information about how to choose the correct phase 2 settings for your particular
situation, refer to the
.
Phase 2 list
Figure 123:IPSec VPN Phase 2 list
Phase 2 basic settings
Figure 124:Phase 2 basic settings
Note: The procedures in this section assume that you want the FortiGate unit to generate
unique IPSec encryption and authentication keys automatically. In situations where a remote
VPN peer requires a specific IPSec encryption and/or authentication key, you must configure
the FortiGate unit to use manual keys instead. For more information, see
.
Create New
Select Create New to create a new phase 2 tunnel configuration.
Tunnel Name
The names of existing tunnel configurations.
Remote Gateway
The names of the phase 1 configurations that are associated with the
tunnel configurations.
Lifetime (sec/kb)
The tunnel key lifetime.
Status
The current status of the tunnel. If Down, the tunnel is not processing
traffic. If Up, the tunnel is currently processing traffic. Unknown is
displayed for dialup tunnels.
Timeout
If the tunnel is processing VPN traffic, the Timeout value specifies
amount of time left before the next phase 2 key exchange. When the
phase 2 key expires, a new key is generated without interrupting service.
Edit, view or delete phase 2 configurations.