NETGEAR SRX5308-100NAS Switch User Manual


 
Virtual Private Networking Using IPSec and L2TP Connections
226
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
examples.) To display the IPv6 settings on the IKE Policies screen, select the IPv6 radio
button.
Figure 154.
Each policy contains the data that are explained in the following table. These fields are
explained in more detail in Table 53 on p
age 228.
To delete one or more IKE polices:
1. Select the che
ck box to the left of each policy that you want to delete, or click the Select
All table button to select all IKE policies.
2. Click the Delete t
able button.
For information about how to add or edit an IKE policy, see Manually Add or Edit an IKE
Policy on p
age 227.
Table 52. IKE Policies screen information for IPv4 and IPv6
Item Description
Name The name that identifies the IKE policy. When you use the VPN Wizard to set up a VPN
policy, an accompanying IKE policy is automatically created with the same name that you
select for the VPN policy.
Note: The name is not supplied to the remote VPN endpoint.
Mode The exchange mode: Main or Aggressive.
Local ID The IKE/ISAKMP identifier of the VPN firewall
. The remote endpoint needs to have this
value as its remote ID.
Remote ID The IKE/ISAKMP identifier of the remote end
point, which needs to have this value as its
local ID.
Encr The encryption algorithm that is used for the IKE sec
urity association (SA). This setting
needs to match the setting on the remote endpoint.
Auth The authentication algorithm that is used for th
e IKE SA. This setting needs to match the
setting on the remote endpoint.
DH The Diffie-Hellman (DH) group that is used whe
n keys are exchanged. This setting needs
to match the setting on the remote endpoint.