Netgear FVS318 FVS318v3 Reference Manual - Page 60
The VPN Wizard using VPNC defaults see, Table 5-1, Advanced Virtual Private Networking
UPC - 606449023381
View all Netgear FVS318 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 60 highlights
Reference Manual for the ProSafe VPN Firewall FVS318v3 FQDNs supplied by Dynamic DNS providers can allow a VPN endpoint with a dynamic IP address to initiate or respond to a tunnel request. Otherwise, the side using a dynamic IP address must always be the initiator. • What method will you use to configure your VPN tunnels? - The VPN Wizard using VPNC defaults (see Table 5-1) - Advanced methods (see Chapter 6, "Advanced Virtual Private Networking") Table 5-1. Parameters recommended by the VPNC and used in the VPN Wizard Parameter Secure Association Authentication Method Encryption Method Authentication Protocol Diffie-Hellman (DH) Group Key Life IKE Life Time NETBIOS Factory Default Main Mode Pre-shared Key 3DES SHA-1 Group 2 (1024 bit) 8 hours 24 hours Enabled • What level of IPSec VPN encryption will you use? - DE - The Data Encryption Standard (DES) processes input data that is 64 bits wide, encrypting these values using a 56 bit key. Faster but less secure than 3DES. - 3DES - (Triple DES) achieves a higher level of security by encrypting the data three times using DES with three different, unrelated keys. - AES • What level of authentication will you use? - MDS - 128 bits, faster but less secure. - SHA-1 - 160 bits, slower but more secure. Note: NETGEAR publishes additional interoperability scenarios with various gateway and client software products. 5-4 Basic Virtual Private Networking January 2005