EasyManua.ls Logo

Cisco ASA 5505 - Page 1402

Cisco ASA 5505
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
64-92
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 64 General VPN Setup
Mapping Certificates to IPsec or SSL VPN Connection Profiles
Monitor Keepalives—Enables or disables IKE keep alive monitoring. Selecting this option
makes available the Confidence Interval and Retry Interval fields.
Confidence Interval—Specifies the IKE keepalive confidence interval. This is the number of
seconds the adaptive security appliance should allow a peer to idle before beginning keepalive
monitoring. The minimum is 10 seconds; the maximum is 300 seconds. The default for a remote
access group is 300 seconds.
Retry Interval—Specifies number of seconds to wait between IKE keepalive retries. The default
is 2 seconds.
Head end will never initiate keepalive monitoring—Specifies that the central-site adaptive
security appliance never initiates keepalive monitoring.
Default Group Policy—Specifies the following group-policy attributes:
Group Policy—Selects a group policy to use as the default group policy. The default value is
DfltGrpPolicy.
Manage—Opens the Configure Group Policies dialog box.
IPsec Protocol—Enables or disables the use of the IPsec protocol for this connection profile.
Modes
The following table shows the modes in which this feature is available:
Add/Edit Tunnel Group > PPP
On the Add or Edit Tunnel Group dialog box for a IPsec remote access tunnel group, the PPP dialog box
lets you configure or edit the authentication protocols permitted of a PPP connection. This dialog box
applies only to IPsec remote access tunnel groups.
Fields
CHAP—Enables the use of the CHAP protocol for a PPP connection.
MS-CHAP-V1—Enables the use of the MS-CHAP-V1 protocol for a PPP connection.
MS-CHAP-V2—Enables the use of the MS-CHAP-V2 protocol for a PPP connection.
PAP—Enables the use of the PAP protocol for a PPP connection.
EAP-PROXY—Enables the use of the EAP-PROXY protocol for a PPP connection. EAP refers to
the Extensible Authentication protocol.
Modes
The following table shows the modes in which this feature is available:
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
——

Table of Contents

Other manuals for Cisco ASA 5505

Preview: Quick Start Guide
Quick Start Guide2 pages
Preview: Getting Started Guide
Getting Started Guide168 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages

Related product manuals