Netgear 05200007 User Manual

5-14

Using the Security Policy Editor

d.

In the SA Life box, click an option. Unspecified is the default.

e.

If you clicked Seconds for SA Life, in the adjacent box, type the number of seconds.

f.

In the Key Group box, click Diffie-Hellman Group 1, Group 2 (the default), or 
Group 5.

6.

Click Save.

7.

Configure Key Exchange (Phase 2).

After you add and configure the authentication proposals for Security Policy, the next step is to 
add and configure the key exchange proposals for that policy, one connection at a time. 

1.

Configure Authentication (Phase 1).

2.

In the Security Policy Editor, in the Network Security Policy list, expand a secure connection 

.

3.

For the selected connection, expand Security Policy. Authentication (Phase 1) and Key 
Exchange (Phase 2) appear.

4.

Expand Key Exchange (Phase 2). Proposals appear.

5.

Your next step depends on whether you are configuring the first proposal or a subsequent one:

•

For the first proposal, click Proposal 1.

•

For a subsequent proposal, you can start from scratch or copy an existing one as a base:

–

To start from scratch, click Create New Proposal.

–

To copy an existing proposal, click the source proposal, and then click Copy.

6.

In the IPSec Protocols group, configure these options:

a.

In the SA Life box, click the measurement unit. Your selection opens various boxes for 
you to enter additional information. 

Note: If you click Unspecified, no boxes are enabled; skip step “b”.

b.

In the enabled boxes, type a value.

c.

In the Compression box, click Deflate; this value increases the transmission speed. 

7.

Encapsulation Protocol (ESP) and Authentication Protocol (AH) are mutually exclusive 
check boxes. Select the one that meets your requirements: