EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #1402 background imageLoading...
Page #1402 background image
64-92
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 64 General VPN Setup
Mapping Certificates to IPsec or SSL VPN Connection Profiles
–
Monitor Keepalives—Enables or disables IKE keep alive monitoring. Selecting this option
makes available the Confidence Interval and Retry Interval fields.
–
Confidence Interval—Specifies the IKE keepalive confidence interval. This is the number of
seconds the adaptive security appliance should allow a peer to idle before beginning keepalive
monitoring. The minimum is 10 seconds; the maximum is 300 seconds. The default for a remote
access group is 300 seconds.
–
Retry Interval—Specifies number of seconds to wait between IKE keepalive retries. The default
is 2 seconds.
–
Head end will never initiate keepalive monitoring—Specifies that the central-site adaptive
security appliance never initiates keepalive monitoring.
• Default Group Policy—Specifies the following group-policy attributes:
–
Group Policy—Selects a group policy to use as the default group policy. The default value is
DfltGrpPolicy.
–
Manage—Opens the Configure Group Policies dialog box.
–
IPsec Protocol—Enables or disables the use of the IPsec protocol for this connection profile.
Modes
The following table shows the modes in which this feature is available:
Add/Edit Tunnel Group > PPP
On the Add or Edit Tunnel Group dialog box for a IPsec remote access tunnel group, the PPP dialog box
lets you configure or edit the authentication protocols permitted of a PPP connection. This dialog box
applies only to IPsec remote access tunnel groups.
Fields
• CHAP—Enables the use of the CHAP protocol for a PPP connection.
• MS-CHAP-V1—Enables the use of the MS-CHAP-V1 protocol for a PPP connection.
• MS-CHAP-V2—Enables the use of the MS-CHAP-V2 protocol for a PPP connection.
• PAP—Enables the use of the PAP protocol for a PPP connection.
• EAP-PROXY—Enables the use of the EAP-PROXY protocol for a PPP connection. EAP refers to
the Extensible Authentication protocol.
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals