Vigor2862 Series User’s Guide
366
IKE Authentication
Method
This usually applies to those are remote dial-in user or node
(LAN-to-LAN) which uses dynamic IP address and
IPsec-related VPN connections such as L2TP over IPsec and
IPsec tunnel. There are two methods offered by Vigor router
for you to authenticate the incoming data coming from
remote dial-in user, Certificate (X.509) and Pre-Shared
Key.
Certificate for Dial-in –Choose one of the local certificates
from the drop down list.
General Pre-Shared Key - Define the PSK key for general
authentication.
Pre-Shared Key- Specify a key for IKE authentication.
Confirm Pre-Shared Key- Retype the characters to
confirm the pre-shared key.
Pre-Shared Key for XAuth User - Define the PSK key for
IPsec XAuth authentication.
Pre-Shared Key- Specify a key for IKE authentication.
Confirm Pre-Shared Key- Retype the characters to
confirm the pre-shared key.
Note: Any packets from the remote dial-in user which does
not match the rule defined in VPN and Remote
Access>>Remote Dial-In User will be applied with the
method specified here.
IPsec Security Method Medium - Authentication Header (AH) means data will be
authenticated, but not be encrypted. By default, this option
is active.
High (ESP) - Encapsulating Security Payload (ESP) means
payload (data) will be encrypted and authenticated. You
may select encryption algorithm from Data Encryption
Standard (DES), Triple DES (3DES), and AES.
After finishing all the settings here, please click OK to save the configuration.
V
V
-
-
1
1
-
-
6
6
I
I
P
P
s
s
e
e
c
c
P
P
e
e
e
e
r
r
I
I
d
d
e
e
n
n
t
t
i
i
t
t
y
y
To use digital certificate for peer authentication in either LAN-to-LAN connection or Remote
User Dial-In connection, here you may edit a table of peer certificate for selection. As shown
below, the router provides 32 entries of digital certificates for peer dial-in users.
To Next Page
Loading...
Need help?
General
