Filter
Top Products
Page 9 | AlliedWare™ OS How To Note: VPNs with NetScreen routers
This step has two alternatives:
z if your WAN connection has a static IP address, you need to configure Perfect Forward
Secrecy. This is the first alternative
z if your WAN connection has a dynamic IP address, you need to use Aggressive Mode,
configure Perfect Forward Secrecy, and give the peer a local ID. This is the second
alternative, shown on the next page
Static
address
If you have a static address, then in the
middle of the Advanced Settings page,
select the Use Perfect Forward Secrecy
checkbox and set the DH Group for
PFS to Group 2.
Then click the OK button.
8. Configure additional settings