PLANET CS-2000 User Manual

CS-2000 UTM Content Security Gateway User’s Manual

- 232 -

Step6

In IPSec Algorithm, select Data Encryption + Authentication or Authentication Only.

In ENC Algorithm (3DES/DES/AES/NULL), select 3DES. In AUTH Algorithm (MD5/SHA1),

select MD5, to assure the authentication methods.

The IPSec Algorithm setting

Step7

In Perfect Forward Secrecy（NO-PFS/ GROUP 1,2,5）, select GROUP 1 . In ISAKMP Lifetime,

enter 3600 seconds. In IPSec Lifetime, enter 28800 seconds.

The IPSec Perfect Forward Secrecy setting

Step8

In My ID, select Aggressive mode.

In My ID / Peer ID, the MIS engineer can select not to enter.

In My ID / Peer ID, if the MIS engineer wants to enter the IP, then it must be the two different IP

address. For example, 11.11.11.11, 22.22.22.22. If the MIS engineer want to add the number or

alphabet to access the authentication, then he must add the @ in front of the alphabet or the

numbers. For example, @123a, @abcd1.

The IPSec Aggressive mode setting

Step9

Complete the IPSec Autokey settings.

Complete the IPSec Autokey setting