Filter
Top Products
Billion BiGuard VPN Client
Chapter 4: VPN Configuration
23
Remote address: This field may be "Remote host address" or "Remote LAN address"
depending of the address type. It is the remote IP address, or LAN network address of the
gateway, that opens the VPN tunnel.
Subnet mask: Subnet mask of the remote LAN. Only available when address type is equal to
the "Subnet address".
ESP:
~ ESP Encryption: Select the encryption method from the pull-down menu. There are
several options, DES, 3DES and AES (128, 192 and 256).
z DES: Stands for Data Encryption Standard, it uses 56 bits as an encryption method.
z 3DES: Stands for Triple Data Encryption Standard, it uses 168 (56*3) bits as an
encryption method.
z AES: Stands for Advanced Encryption Standards, you can use 128, 192 or 256 bits as
encryption method.
~ ESP
authentication: It is a Message Digest algorithm which coverts any length of a message
into a unique set of bits. It is widely used MD5 (Message Digest) and SHA (Secure Hash Algorithm)
algorithms.
SHA is more resistant to brute-force attacks than MD5, however it is slower.
z MD5: A one-way hashing algorithm that produces a 128−bit hash.
z SHA: A one-way hashing algorithm that produces a 160−bit hash.
~ ESP mode: IPSec encapsulation mode : tunnel.
PFS group (Diffie-Hellman key length): It is a public-key cryptography protocol that allows two
parties to establish a shared secret over an unsecured communication channel (i.e. over the Internet).
There are three modes, MODP 768-bit, MODP 1024-bit and MODP 1536-bit. MODP stands for Modular
Exponentiation Groups.
Open Tunnel: This button allows users to open the tunnel. This button changes to "Close
Tunnel" as soon as the tunnel is opened.
For more advanced settings, click on “P2 Advanced”.
Once the parameters are set, click on “Save & Apply” to save and to take into account the new
configuration.
Phase 2 Advanced configuration
For Advanced features and parameters, click on “P1 Advanced” button into Phase 1 panel.