Netgear FVS318Gv2 – ProSAFE VPN Firewall Series Reference Manual
Virtual Private Networking Using IPSec and L2TP Connections
255
NETGEAR ProSAFE VPN Firewall FVS318G v2
Key-Out
The encryption key for the outbound policy. The length of the key depends on
the selected encryption algorithm:
the selected encryption algorithm:
•
3DES. Enter 24 characters.
•
None. Key does not apply.
•
DES. Enter 8 characters.
•
AES-128. Enter 16 characters.
•
AES-192. Enter 24 characters.
•
AES-256. Enter 32 characters.
SPI-Outgoing
The security parameter index (SPI) for the outbound policy. Enter a hexadecimal
value between three and eight characters (for example, 0x1234).
value between three and eight characters (for example, 0x1234).
Integrity Algorithm
From the list, select the algorithm to be used in the VPN header for the
authentication process:
authentication process:
•
SHA-1. Hash algorithm that produces a 160-bit digest. This is the default
setting.
setting.
•
MD5. Hash algorithm that produces a 128-bit digest.
Key-In
The integrity key for the inbound policy. The length of the key depends on the
selected integrity algorithm:
selected integrity algorithm:
•
MD5. Enter 16 characters.
•
SHA-1. Enter 20 characters.
Key-Out
The integrity key for the outbound policy. The length of the key depends on the
selected integrity algorithm:
selected integrity algorithm:
•
MD5. Enter 16 characters.
•
SHA-1. Enter 20 characters.
Auto Policy Parameters
Note:
These fields apply only when you select Auto Policy as the policy type.
SA Lifetime
The lifetime of the security association (SA) is the period or the amount of
transmitted data after which the SA becomes invalid and must be renegotiated.
From the list, select how the SA lifetime is specified:
transmitted data after which the SA becomes invalid and must be renegotiated.
From the list, select how the SA lifetime is specified:
•
Seconds. In the SA Lifetime field, enter a period in seconds. The minimum
value is 300 seconds. The default setting is 3600 seconds.
value is 300 seconds. The default setting is 3600 seconds.
•
KBytes. In the SA Lifetime field, enter a number of kilobytes. The minimum
value is 1920000 KB.
value is 1920000 KB.
Encryption Algorithm
From the list, select the algorithm to negotiate the security association (SA):
•
3DES. Triple DES. This is the default algorithm.
•
None. No encryption algorithm.
•
DES. Data Encryption Standard (DES).
•
AES-128. Advanced Encryption Standard (AES) with a 128-bit key size.
•
AES-192. AES with a 192-bit key size.
•
AES-256. AES with a 256-bit key size.
Table 53. Add New VPN Policy screen settings for IPv4 and IPv6 (continued)
Setting
Description