Netgear SRX5308 SRX5308 Reference Manual - Page 168
Table 5-10. Add IKE Policy Settings continued, Local, Local WAN IP, User FQDN, DER ASN1 DN, Remote
UPC - 606449065145
View all Netgear SRX5308 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 168 highlights
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual Table 5-10. Add IKE Policy Settings (continued) Item Description (or Subfield and Description) Local Select Local Gateway Identifier Type From the drop-down list, select one of the four WAN interfaces to function as the local gateway. From the drop-down list, select one of the following ISAKMP identifiers to be used by the VPN firewall, and then specify the identifier in the field below: • Local WAN IP. The WAN IP address of the VPN firewall. When you select this option, the Identifier field masks out. • FQDN. The Internet address for the VPN firewall. • User FQDN. The email address for a local VPN client or the VPN firewall. • DER ASN1 DN. A distinguished name (DN) that identifies the VPN firewall in the DER encoding and ASN.1 format. Identifier Depending on the selection in the Identifier Type dropdown list, enter the IP address, email address, FQDN, or distinguished name. Remote Identifier Type From the drop-down list, select one of the following ISAKMP identifiers to be used by the remote endpoint, and then specify the identifier in the field below: • Remote WAN IP. The WAN IP address of the remote endpoint. When you select this option, the Identifier field masks out. • FQDN. The FQDN for a remote gateway. • User FQDN. The email address for a remote VPN client or gateway. • DER ASN1 DN. A distinguished name (DN) that identifies the remote endpoint in the DER encoding and ASN.1 format. Identifier Depending on the selection of the Identifier Type dropdown list, enter the IP address, email address, FQDN, or distinguished name. IKE SA Parameters Encryption Algorithm From the drop-down list, select one of the following five algorithms to negotiate the security association (SA): • DES. Data Encryption Standard (DES). • 3DES. Triple DES. This is the default algorithm. • AES-128. Advanced Encryption Standard (AES) with a 128-bits key size. • AES-192. AES with a 192-bits key size. • AES-256. AES with a 256-bits key size. 5-26 Virtual Private Networking Using IPsec Connections v1.0, April 2010