NETGEAR D6200 Network Router User Manual


 
Advanced Settings
135
D6200 WiFi DSL Modem Router
performance. It is common to use periods over an hour (3600 seconds) for the SA
lifetime. This setting applies to both IKE and IPSec SAs.
- Enable PFS (Perfect Forward Secrecy). If enabled, security is enhanced by
ensuring that the key is changed at regular intervals.
Also, even if one key is
broken, subsequent keys are no easier to break. (Each key has no relationship to
the previous key.)
This setting applies to both IKE and IPSec SAs. When configuring the remote
endpoint to match this setting, you might need to specify the key group used. For
this device, the key group is the same as the DH Group setting in the IKE section.
4. Click Apply.
Add or Edit a Manual VPN Policy
A Manual VPN policy requires all settings (including the keys) for the VPN tunnel to be
manually input at each end (both VPN endpoints). No third-party server or organization is
involved.
To add or edit a Manual VPN policy:
1. Select ADV
ANCED > Advanced Setup > VPN Policies.
2. Click the Add Manual Policy.
3. Enter or select the following parameters:
General.
These settings identify this policy and determine its major characteristics.
- Policy Name. Enter a unique name to identify this policy
. This name is not
supplied to the remote VPN endpoint. It is used only to help you manage the
policies.