AudioCodes Media Pack MP-124 - Table 3-14: Default IKE First Phase Proposals; Table 3-15: IKE Table Configuration Parameters

AudioCodes Media Pack MP-124

486 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Version 5.8 89 September 2009

SIP User's Manual 3. Web-Based Management

If no IKE methods are defined (Encryption / Authentication / DH Group), the default settings

(shown in the following table) are applied.

Table 3-14: Default IKE First Phase Proposals

Proposal Encryption Authentication DH Group

3DES

Proposal 0

SHA1 1024

3DES

Proposal 1

MD5 1024

3DES

Proposal 2

SHA1 786

3DES

Proposal 3

MD5 786

The parameters described in the following table are used to configure the first phase (main

mode) of the IKE negotiation for a specific peer. A different set of parameters can be

configured for each of the 20 available peers.

Table 3-15: IKE Table Configuration Parameters

Parameter Name Description

Authentication Method Determines the authentication method for IKE.

[IkePolicyAuthenticationMethod]

 [0]



Pre-shared Key (default)

[1] RSA Signature

 For pre-shared key authentication, peers participating in

an IKE exchange must have a prior (out-of-band)

knowledge of the common key (see

IKEPolicySharedKey parameter).

Notes:

 For RSA signature authentication, peers must be loaded

with a certificate signed by a common CA. For additional

information on certificates, refer to ''Server Certificate

Replacement'' 79 on page .

Shared Key Determines the pre-shared key (in textual format). Both

peers must register the same pre-shared key for the

authentication process to succeed.

[IKEPolicySharedKey]

 The pre-shared key forms the basis of IPSec security

and should therefore, be handled cautiously (in the

same way as sensitive passwords). It is not

recommended to use the same pre-shared key for

several connections.

Notes:

 Since the ini file is in plain text format, loading it to the

device over a secure network connection is

recommended, preferably over a direct crossed-cable

connection from a management PC. For added

confidentiality, use the encoded ini file option (described

in ''Secured Encoded ini File'' 189 on page ).

 After it is configured, the value of the pre-shared key

cannot be obtained via Web interface, ini file, or SNMP

(refer the Product Reference Manual

).

Table of Contents

Related product manuals

Preview: AudioCodes MediaPack

AudioCodes MediaPack

Preview: AudioCodes Mediant 500

AudioCodes Mediant 500

Preview: AudioCodes Mediant 500L

AudioCodes Mediant 500L

Preview: AudioCodes Mediant 2000

AudioCodes Mediant 2000

Preview: AudioCodes Mediant 8000

AudioCodes Mediant 8000

Preview: AudioCodes MediaPack 504

AudioCodes MediaPack 504

Preview: AudioCodes Mediant 1000B

AudioCodes Mediant 1000B

Preview: AudioCodes MediaPack 114

AudioCodes MediaPack 114

Preview: AudioCodes Mediant Series

AudioCodes Mediant Series

Preview: AudioCodes MediaPack MP-118

AudioCodes MediaPack MP-118

Preview: AudioCodes MediaPack MP-124

AudioCodes MediaPack MP-124

Preview: AudioCodes MediaPack MP-114

AudioCodes MediaPack MP-114