Reference Manual for the ProSafe Wireless 802.11g VPN Firewall Model FVG318
7-16 Advanced Virtual Private Networking
v1.0, October 2005
The IKE Phase 1 parameters used in Scenario 1 are:
•Main mode
• TripleDES
• SHA-1
• MODP group 2 (1024 bits)
• pre-shared secret of “hr5xb84l6aa9r6”
• SA lifetime of 28800 seconds (eight hours) with no kilobytes rekeying
The IKE Phase 2 parameters used in Scenario 1 are:
• TripleDES
• SHA-1
• ESP tunnel mode
• MODP group 2 (1024 bits)
• Perfect forward secrecy for rekeying
• SA lifetime of 3600 seconds (one hour) with no kilobytes rekeying
• Selectors for all IP protocols, all ports, between 10.5.6.0/24 and 172.23.9.0/24, using IPv4
subnets
FVG318 Scenario 1: FVG318 to Gateway B IKE and VPN Policies
Use this scenario illustration and configuration screens as a model to build your configuration.
1. Log in to the FVG318 labeled Gateway A as in the illustration.
Log in at the default address of http://192.168.1.1 with the default user name of admin and
default password of password, or using whatever password and LAN address you have
chosen.
Note: This scenario assumes all ports are open on the FVG318. You can verify this by
reviewing the security settings as seen in the Figure 5-3 on page 5-5.
Figure 7-6
)9*
*DWHZD\%
6FHQDULR
:$1,3
:$1,3
/$1,3
/$1,3
*DWHZD\$
)9*
To Next Page
Loading...
