Perle Systems STS User Manual
VPN
222
IOLAN SDS/SCS/STS User’s Guide, Version 3.6
IKE Phase 1 Proposals
The following IKE Phase 1 proposals are supported by the IOLAN VPN gateway:
z
Ciphers—3DES, AES
z
Hashes—MD5, SHA1
z
Diffie-Hellman Groups—2 (MODP1024), 5 (MODP1536), 14 (MODP2048), 15 (MODP3072),
16 (MODP4096), 17 (MODP6144), 18 (MODP8192)
16 (MODP4096), 17 (MODP6144), 18 (MODP8192)
ESP Phase 2 Proposals
The following ESP Phase 2 proposals are supported by the IOLAN VPN gateway:
z
Ciphers—3DES, AES
z
Authentication Algorithms—MD5, SHA1, SHA2
IPsec
When an IPsec tunnel becomes active, you are requiring that all access to the IOLAN go through the
configured IPsec tunnel(s), so you must configure any exceptions first (see
configured IPsec tunnel(s), so you must configure any exceptions first (see
for more information on exceptions) or you will not be able to access the IOLAN through the
network unless you are configured to go through the IPsec tunnel (you can still access the IOLAN
through the Console port).
network unless you are configured to go through the IPsec tunnel (you can still access the IOLAN
through the Console port).
Field Descriptions
The following buttons are available:
Add Button
Click this button to add a new IPsec VPN tunnel.
Edit Button
Select an existing IPsec VPN tunnel to edit the tunnel’s parameters.
Delete Button
Select an existing IPsec VPN tunnel to remove the tunnel.