ProSafe Gigabit Quad WAN SSL VPN Firewall SRX5308 Reference Manual
5-22 Virtual Private Networking Using IPsec Connections
v1.0, April 2010
IKE Policies Screen
To access the IKE Policies screen:
Select VPN > IPSec VPN from the menu. The IPsec VPN submenu tabs display, with the IKE
Policies screen in view (Figure 5-20 shows some examples).
Each policy contains the data that are explained in Table 5-9 These fields are explained in more
detail in Table 5-10 on page 5-25.
Figure 5-20
Table 5-9. List of IKE Policies Information
Item Description (or Subfield and Description)
Name The name that identifies the IKE policy. When you use the VPN Wizard to set up
a VPN policy, an accompanying IKE policy is automatically created with the
same name that you select for the VPN policy.
Note: The name is not supplied to the remote VPN endpoint.
Mode The exchange mode: Main or
Aggressive.
Local ID The IKE/ISAKMP identifier of the VPN firewall. The remote endpoint must have
this value as its remote ID.
Remote ID The IKE/ISAKMP identifier of the remote endpoint, which must have this value
as its local ID.
Encr The encryption algorithm that is used for the IKE security association (SA). This
setting must match the setting on the remote endpoint.
Auth The authentication algorithm that is used for the IKE SA. This setting must match
the setting on the remote endpoint.
DH The Diffie-Hellman (DH) group that is used when exchanging keys. This setting
must match the setting on the remote endpoint.
To Next Page
Loading...
