beautypg.com

Ipsec interoperability – SnapGear 1.7.8 User Manual

Page 93

background image

Checking the Enable Perfect Forward Secrecy of keys checkbox means that an
attacker who acquires the SnapGear appliance’s long-term key (i.e. the pre-shared secret
or RSA Signature Key Private Section) cannot:

Read previous messages which they may have archived, or

• Read future messages without performing additional successful attacks

Perfect forward secrecy of keys provides the maximum security and is the recommended
setting.

IPSec interoperability

Please see the Support Knowledge Base
(http://www.SnapGear.com/knowledgebase.html) on the SnapGear Web Site
(http://www.SnapGear.com/) for detailed information on successfully establishing IPSec
tunnels between your SnapGear appliance and equipment from other vendors.

Virtual Private Networking

90

See also other documents in the category SnapGear Hardware: