Netgear FVS318 FVS318 Reference Manual - Page 72
IKE - VPN Settings Manual Key Configuration Menu, Table 6-1.
![]() |
UPC - 606449023381
View all Netgear FVS318 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 72 highlights
Reference Manual for the Model FVS318 Broadband ProSafe VPN Firewall Figure 6-5: IKE - VPN Settings Manual Key Configuration Menu The Manual Keys configuration fields are defined in the following table. Table 6-1. VPN Manual Keys Configuration Fields Field Secure Association Incoming SPI Outgoing SPI Encryption Protocol Key Group Pre-Shared Key Description Choose Manual Keys key exchange mode for this VPN tunnel: • IKE Main Mode -- the default. • IKE Aggressive Mode -- faster but less secure. • Manual Keys -- more control but more complex. Incoming Security Parameter Index. Enter a Hex value (3 - 8 chars). This string should not be used in any other SA. Any value is acceptable, provided the remote VPN endpoint has the same value in its "Outgoing SPI" field. Outgoing Security Parameter Index. Enter a Hex value (3 - 8 chars). This string should not be used in any other SA. Any value is acceptable, provided the remote VPN endpoint has the same value in its "Incoming SPI" field. The level of encryption will you use. Longer keys are more secure but the throughput could be slower. • Null - Fastest but no security. • DES - The Data Encryption Standard (DES) processes input data that is 64 bits wide, encrypting these values using a 56 bit key. Faster but less secure than 3DES or AES. • 3DES - (Triple DES) achieves a higher level of security by encrypting the data three times using DES with three different, unrelated keys. • AES - 128, - 192, or - 256. Most secure. Advanced Encryption Standard, a symmetric 128-bit block data encryption technique. It is an iterated block cipher with a variable block length and a variable key length. This setting determines the Diffie-Hellman group bit size used in the key exchange. This must match the value used on the remote gateway. Specify the key. Any value is acceptable, provided the remote VPN endpoint has the same value in its Pre-Shared Key field. 6-8 Virtual Private Networking M-10146-01
![](/manual_guide/products/netgear-fvs318-fvs318-reference-manual-f2cda2e/72.png)