Virtual Private Networking Using IPSec and L2TP Connections
236
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Traffic Selection
Local IP From the drop-down list, select the address or addresses that are part of the
VPN tunnel on the wireless VPN firewall:
• Any.
All computers and devices on the network. You cannot select Any for
both the wireless VPN firewall and the remote endpoint.
• Single.
A single IP address on the network. Enter the IP address in the Start
IP Address field.
• Ra
nge. A range of IP addresses on the network. Enter the starting IP address
in the Start IP Address field and the ending IP address in the End IP Address
field.
• Subnet. A subn
et on the network. Enter the starting IP address in the Start IP
Address field. In addition:
- Subnet Mask.
For IPv4 addresses on the IPv4 screen only, enter the
subnet mask.
- IPv6 Prefix Le
ngth. For IPv6 addresses on the IPv6 screen only, enter the
prefix length.
Remote IP From the drop-down list, select the address or addresses that are part of the
VPN tunnel on the remote endpoint. The selections are the same as for the
Local IP drop-down list.
Manual Policy Parameters
Note: These fields apply only when you select Manual P
olicy as the policy type. When you specify the
settings for the fields in this section, a security association (SA) is created.
SPI-Incoming The Security Parameters Index (SPI) for the inbound policy. Enter a
h
exadecimal value between 3 and 8 characters (for example, 0x1234).
Encryption Algorithm From the drop-down list, select one of the following five algorithms to negotiate
the security association (SA):
• 3D
ES. Triple DES. This is the default algorithm.
• None. No encryptio
n algorithm.
• DES. D
ata Encryption Standard (DES).
• AES-128.
Advanced Encryption Standard (AES) with a 128-bit key size.
• AES-192. AES with a
192-bit key size.
• AES-256. AES with a
256-bit key size.
Key-In The encryption key for the inbound policy. The length of the key depends on the
se
lected encryption algorithm:
• 3D
ES. Enter 24 characters.
• None. Key
does not apply.
• DES. Enter 8 characters.
• AES-128.
Enter 16 characters.
• AES-192.
Enter 24 characters.
• AES-256.
Enter 32 characters.
Table 54. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)
Setting Description