68 CHAPTER 5: ROUTER CONFIGURATION
8 Enter the Network Address and Subnet Mask of the local secure group.
The network address of the local secure group is usually the network
address of the local network.From the Key Management drop-down list,
select either IKE Main Mode or IKE Aggressive Mode.
9 At the Pre-shared Key text box, enter the password for the connection.
This must be unique for each connection rule that you create.
10 Enter the Key lifetime, in seconds. The default is 3600 seconds. The value
must be at least 300 seconds.
11 Select MD5, SHA1 or None from the Authentication Algorithm
drop-down list. Both ends of the connection must use the same value.
12 Select DES, 3DES or None from the Encrypt Algorithm drop-down list.
3DES is more secure than DES but may take longer to encrypt. Both ends
of the connection must use the same value.
3DES is not shipped as standard with the Router due to international
restrictions on encryption. If your country permits their use, they can be
downloaded from the 3Com Web site at http://www.3com.com
13 Click Apply to save the settings.
The IKE Keep Alive feature is not available.
Adding an L2TP over
IPSec Connection
To add an L2TP over IPSec Connection, or to edit an existing L2TP over
IPSec connection:
1 In the VPN screen, click Add, or click Edit to edit an existing connection.
2 At the Tunnel Type drop-down list, select L2TP over IPSec. The screen
shown in Figure 46
displays.