beautypg.com

Draytek 2910 User Manual

Page 118

background image

Vigor2910 Series User’s Guide

112

VPN Gateway

peer ID (should be the same with the ID setting in dial-in
type) by checking the box. Enter Peer ISDN number if you
select ISDN above (This feature is useful for i model only.).
Also, you should further specify the corresponding security
methods on the right side.

If you uncheck the checkbox, the connection type you select
above will apply the authentication methods and security
methods in the general settings.

User Name

This field is applicable when you select ISDN, PPTP or L2TP
with or without IPSec policy above.

Password

This field is applicable when you select ISDN, PPTP or L2TP
with or without IPSec policy above.

VJ Compression

VJ Compression is used for TCP/IP protocol header
compression. This field is applicable when you select ISDN,
PPTP or L2TP with or without IPSec policy above.

IKE Authentication
Method

This group of fields is applicable for IPSec Tunnels and L2TP
with IPSec Policy when you specify the IP address of the
remote node. The only exception is Digital Signature (X.509)
can be set when you select IPSec tunnel either with or without
specify the IP address of the remote node.
Pre-Shared Key - Check the box of Pre-Shared Key to
invoke this function and type in the required characters (1-63)
as the pre-shared key.
Digital Signature (X.509) – Check the box of Digital
Signature to invoke this function and select one predefined in
the X.509 Peer ID Profiles (set from VPN and Remote
Access>>IPSec Peer Identity
).

IPSec Security Method

This group of fields is a must for IPSec Tunnels and L2TP
with IPSec Policy when you specify the remote node.
Medium- Authentication Header (AH) means data will be
authenticated, but not be encrypted. By default, this option is
active.
High- Encapsulating Security Payload (ESP) means payload
(data) will be encrypted and authenticated. You may select
encryption algorithm from Data Encryption Standard (DES),
Triple DES (3DES), and AES.

Callback Function

The callback function provides a callback service only for the
ISDN LAN-to-LAN connection (this feature is useful for i
model only). The remote user will be charged the connection
fee by the telecom.
Check to enable Callback function-Enables the callback
function.
Callback number-The option is for extra security. Once
enabled, the router will ONLY call back to the specified
Callback Number.
Callback budget- By default, the callback function has
limitation of callback period. Once the callback budget is
exhausted, the function will be disabled automatically.
Callback Budget (Unit: minutes)- Specify the time budget
for the dial-in user. The budget will be decreased