AirLive IP-2000VPN User Manual

AirLive IP-2000VPN User’s Manual

95

Data – Authentication and Encryption

Setting

Type

Value

Notes

IKE Direction

Both Directions

Do not have to match with Site B. Either

endpoint can block 1 direction.

Local Identify

WAN IP Address

System will detect the IP address and fill

in the form automatically. It is the most

common ID method.

Remote Identify

Remote WAN IP

Address

System will detect the IP address and fill

in the form automatically. It is the most

common ID method.

IKE Authentication

method

Pre-shared Key

12345678

Certificates are not widely used.

IKE Authentication

algorithm

MD5

Must match with Site B

IKE Encryption

3DES

Must match with Site B

IKE Exchange

mode

Main Mode

Must match with Site B

DH Group

Group 2 (1024 Bit)

Must match with Site B

IKE SA Life time

180

Shorter period will be used.

IKE Keep Alive

Enable

192.168.0.1

Used to set the LAN IP address of

IP-2000VPN at Site B.

IKE PFS

Disable

Must match with Site B

IPSec SA Parameters

IPSec SA Life time

300

Shorter period will be used.

IPSec PFS

Disable

Must match with Site B

AH Authentication

Disable

AH is rarely used.

ESP Authentication Enable

MD5

Must match with Site B

ESP Encryption

Enable

3DES

Must match with Site B