Configuring with Web Based Management
4.9 Security
SINEMA Remote Connect - Server
102 Operating Instructions, 11/2017, C79000-G8976-C383-04
A list of the IPsec profiles that have already been created along with their status is displayed:
Profile name The name assigned to the IPsec profile. The name must be unique throughout the system and
cannot be changed, refer to the section "Creating IPsec profiles (Page 102)".
Settings of phase 1 - ESP (authentication)
IKE Settings of phase 2 - IKE (KE/key exchange)
Actions
Overview of the IPsec profile. This is also displayed for users with the right "read only".
Changing an IPsec profile. This also includes changing the settings for phase 1 and 2.
Creating IPsec profiles
Requirement for changing the IPsecVPN settings
The user has been assigned the right "Edit system parameters".
Creating a new IPsec profile
1. Open the "IPsec profile" tab.
2. Click the "Create" button.
3. Enter a name for the IPsec profile.
4. In Key exchange method specify whether IKEv2 or IKEv1 will be used.
5. Make the settings of phase 1 - ESP (authentication)
Encryption algo-
The selection depends on the phase und the key exchange method (IKE)
Hash method Selection of the authentication algorithm:
Key derivation Select the required Diffie-Hellmann group (DH) from which a key will be
Lifetime The lifetime of the authentication. When the time has elapsed, the VPN
endpoints involved must authenticate themselves with each other again and
To Next Page
Loading...
