D-Link DIR-455 User Manual

31

D-Link DIR-455 User Manual

Section 3 - Configuration

Three groups can be selected: None, Group 1,

Group 2, Group 5.

None: No PFS group

Group 1: 768-bit Diffie-Hellman prime modulus

Group 2: 1024-bit Diffie-Hellman prime modulus

Group 5: 1536-bit Diffie-Hellman prime modulus

Enabling this mode will accelerate the initial tunnel

setup, but the device will suffer from less security

in the meantime. Hosts at both ends of the tunnel

must support this mode so as to establish the

tunnel properly.

The first key that supports IKE mechanism of both

VPN gateway and VPN client host for negotiating

further security keys. The pre-shared key must be

same on both VPN gateways and clients.

The Type and the Value must be the same as the Type and the Value of the Local ID of the remote VPN

gateway.

The Type and the Value must be the same as the Type and the Value of the Remote ID of the remote VPN

gateway.

Input the IP address of remote host that exist in the remote side of the VPN tunnel (Ex. You can input the LAN

IP address of remote VPN gateway). The device will start to Ping the remote host when there is no traffic within

the VPN tunnel. If the device is no longer receiving an ICMP response from remote host, it will terminate the

VPN tunnel automatically.

PFS Group:

Aggressive Mode:

Preshared Key:

Remote ID:

Local ID:

Keep Alive (Ping IP

Address):