Brother International ADS-3000N Network Users Guide - Page 79

Security Features IKEv1 Settings for an IPsec Template 6 Template Name Type a name for the template (up to 16 characters). Use Prefixed Template Select Custom, IKEv1 High Security, IKEv1 Medium Security, IKEv2 High Security, or IKEv2 Medium Security. The setting items are different depending on the selected template. NOTE The default template may differ depending on whether you selected Main or Aggressive for Negotiation Mode on the IPsec configuration screen. Internet Key Exchange (IKE) IKE is a communication protocol used to exchange encryption keys to carry out encrypted communication 6 using IPsec. To carry out encrypted communication this time only, the encryption algorithm necessary for IPsec is determined and the encryption keys are shared. For IKE, the encryption keys are exchanged using the Diffie-Hellman key exchange method, and the encrypted communication limited to IKE is carried out. If you selected Custom in Use Prefixed Template, select IKEv1, IKEv2, or Manual. If you selected a setting other than Custom, the IKE, authentication type and Encapsulating Security selected in Use Prefixed Template are displayed. Authentication Type Configure the IKE authentication and encryption.  Diffie-Hellman Group This key exchange method allows secret keys to be securely exchanged over an unprotected network. The Diffie-Hellman key exchange method uses a discrete logarithm problem, not the secret key, to send and receive open information that was generated using a random number and the secret key. Select Group1, Group2, Group5, or Group14.  Encryption Select DES, 3DES, AES-CBC 128, or AES-CBC 256.  Hash Select MD5, SHA1, SHA256, SHA384 or SHA512.  SA Lifetime Specify the IKE SA lifetime. Type the time (seconds) and number of kilobytes (KByte). Encapsulating Security  Protocol Select ESP, AH+ESP or AH. 75