NETGEAR SRX5308-100NAS Switch User Manual


 
Virtual Private Networking Using IPSec and L2TP Connections
238
ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308
Key-Out The encryption key for the outbound policy. The length of the key depends on
the selected encryption algorithm:
3D
ES. Enter does is not apply.
DES.
Enter 8 characters.
AES-128. Enter 16 characters.
AES-192.
Enter 24 characters.
AES-256.
Enter 32 characters.
SPI-Outgoing The Security Parameters Index (SPI) for the outbound policy. Enter a
hexadecimal value between 3 and 8 characters (for example, 0x1234).
Integrity Algorithm From the drop-down list, select one of the following two algorithms to be used in
the
VPN header for the authentication process:
SHA-
1. Hash algorithm that produces a 160-bit digest. This is the default
setting.
MD5.
Hash algorithm that produces a 128-bit digest.
Key-In The integrity key for the inbound policy. The length of the key depends on the
selected integrity algorithm:
MD5.
Enter 16 characters.
SHA-
1. Enter 20 characters.
Key-Out The integrity key for the outbound policy. The length of the key depends on the
selected integrity algorithm:
MD5.
Enter 16 characters.
SHA-
1. Enter 20 characters.
Auto Policy Parameters
Note: These fields apply only when you select Auto Policy as the policy type.
SA Lifetime The lifetime of the security association
(SA) is the period or the amount of
transmitted data after which the SA becomes invalid and needs to be
renegotiated. From the drop-down list, select how the SA lifetime is specified:
Seco
nds. In the SA Lifetime field, enter a period in seconds. The minimum
value is 300 seconds. The default setting is 3600 seconds.
KBytes. In th
e SA Lifetime field, enter a number of kilobytes. The minimum
value is 1920000 KB.
Encryption Algorithm From the drop-down list, select one of the follo
wing five algorithms to negotiate
the security association (SA):
3D
ES. Triple DES. This is the default algorithm.
None. No encryptio
n algorithm.
DES. Data Encryption Standard (DES).
AES-128.
Advanced Encryption Standard (AES) with a 128-bit key size.
AES-192. AES with a
192-bit key size.
AES-256. AES with a
256-bit key size.
Table 55. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)
Setting Description