Symantec 16-00-00091 Installation Guide - Page 99

Encryption and Authentication Method, PPPoE Session

Get Symantec 16-00-00091 - FNC XGRD FW VPN 200 PDF manuals and user guides
UPC - 037648211703
View all Symantec 16-00-00091 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 99 highlights

Static tunnel Initially, the screen you see should be blank with a few of the defaults entered. In order to properly configure a static tunnel you will need the following information from the SEVPN: • Gateway IP address of the SEVPN. • Destination network protected by the SEVPN. • Netmask of the destination network protected by the SEVPN. • Local SPI. • Remote SPI. • Encryption parameters on SEVPN (DES, 3DES, SHA1, etc.) • Privacy Algorithm Key. • Integrity Algorithm Key. To configure the tunnel: 1. In the Name field, enter a new name for this tunnel. 2. Check Enable. 3. Select the WAN Port you want to bind the VPN tunnel to. 4. Select the PPPoE Session you want to bind the tunnel to. 5. Set the Incoming SPI to match the Remote SPI from the SEVPN. 6. Set the Outgoing SPI to match the Local SPI from the SEVPN. 7. Select the Encryption and Authentication Method to match the parameters from the SEVPN. 8. Set the Encryption Key to match the Privacy Algorithm Key from the SEVPN. If you are using 3DES you will need to append together the three keys from the SEVPN to form one key. 9. Set the Authentication Key to match Integrity Algorithm Key on the SEVPN. 10. Set the Gateway Address to be the Gateway Address of the SEVPN. 7-5

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
7-5
Static tunnel
Initially, the screen you see should be blank with a few of the defaults entered.
In order to properly
configure a static tunnel you will need the following information from the SEVPN:
Gateway IP address of the SEVPN.
Destination network protected by the SEVPN.
Netmask of the destination network protected by the SEVPN.
Local SPI.
Remote SPI.
Encryption parameters on SEVPN (DES, 3DES, SHA1, etc.)
Privacy Algorithm Key.
Integrity Algorithm Key.
To configure the tunnel:
1.
In the
Name
field, enter a new name for this tunnel.
2.
Check
Enable
.
3.
Select the
WAN Port
you want to bind the VPN tunnel to.
4.
Select the
PPPoE Session
you want to bind the tunnel to.
5.
Set the
Incoming SPI
to match the Remote SPI from the SEVPN.
6.
Set the
Outgoing SPI
to match the Local SPI from the SEVPN.
7.
Select the
Encryption and Authentication Method
to match the parameters from the
SEVPN.
8.
Set the
Encryption Key
to match the Privacy Algorithm Key from the SEVPN.
If you are
using 3DES you will need to append together the three keys from the SEVPN to form one
key.
9.
Set the
Authentication Key
to match Integrity Algorithm Key on the SEVPN.
10.
Set the
Gateway Address
to be the Gateway Address of the SEVPN.