Virtual Private Network > Connections
Virtual Private Network
RM GUI HiSecOS EAGLE20/30
Release
3.0
09/2015
237
IKE Exchange
Mode
Specifies the use of the phase 1 exchange mode for IKEv1.
The purpose of IKE phase 1 is to establish a secure authenticated
communication channel. The device uses the Diffie–Hellman key exchange
algorithm to generate a shared secret key. The device then uses the shared
secret key to further encrypt IKE communications.
Possible values:
main
(default setting)
The main mode for phase 1 provides identity protection.
aggressive
You use the aggressive mode to reduce round trips.
Key agreement Specifies which Diffie-Hellman key agreement algorithm the device uses for
establishing the IKE-SA session key establishment.
Possible values:
any
With this value selected the device accepts every algorithm when
specified as the responder.
modp1024
(default setting)
The value represents an RSA with 1024 bits modulus which is DH
Group 2.
modp1536
The value represents an RSA with 1536 bits modulus which is DH
Group 5.
modp2048
The value represents an RSA with 2048 bits modulus which is DH
Group 14.
modp3072
The value represents an RSA with 3072 bits modulus which is DH
Group 15.
modp4096
The value represents an RSA with 4096 bits modulus which is DH
Group 16.
Parameters Meaning
To Next Page
Loading...