Atlantis Land A02-RA340 ユーザーズマニュアル
WebShare 340/440
62
Diffie-Hellman Group: It is a public-key cryptography protocol that allows two parties to
establish
a shared secret over an unsecured communication channel (i.e. over the Internet). There are
three
modes, MODP 768-bit, MODP 1024-bit and MODP 1536-bit. MODP stands for Modular
Exponentiation Groups.
Local ID:
establish
a shared secret over an unsecured communication channel (i.e. over the Internet). There are
three
modes, MODP 768-bit, MODP 1024-bit and MODP 1536-bit. MODP stands for Modular
Exponentiation Groups.
Local ID:
• Type: Specify local ID type.
• Content: Input ID’s information, like domain name
• Content: Input ID’s information, like domain name
www.ipsectest.com
.
Remote ID:
• Type: Specify Remote ID type.
• Identifier: Input remote ID’s information, like domain name
• Identifier: Input remote ID’s information, like domain name
www.ipsectest.com
.
SA Lifetime: Specify the number of minutes that a Security Association (SA) will stay active
before new encryption and authentication key will be exchanged. There are two kinds of SAs,
IKE and IPSec. IKE negotiates and establishes SA on behalf of IPSec, an IKE SA is used by
IKE.
Phase 1 (IKE): To issue an initial connection request for a new VPN tunnel. The range can
be from 5 to 15,000 minutes, and the default is 240 minutes.
Phase 2 (IPSec): To negotiate and establish secure authentication. The range can be from 5
to 15,000 minutes, and the default is 60 minutes.
A short SA time increases security by forcing the two parties to update the keys. However,
everytime the VPN tunnel re-negotiates, access through the tunnel will be temporarily
disconnected.
PING for Keepalive: It is used to detect IPSec tunnel connection failure. Connection failure
is defined as abort or in NO response state. In such event Ping to Keepalive takes proper
action to ensure the connection quality of IPSec.
PING to the IP: It is able to IP Ping the remote PC with the specified IP address and alert
when the connection fails. Once alter message is received, Router will drop this tunnel
connection. Reestablish of this connection is required. Default setting is 0.0.0.0 which
disables the function.
Internal: This sets the time interval between Pings to the IP function to monitor the
connection status. Default interval setting is 10 seconds. Time interval can be set from 0 to
3600 second, 0 second disables the function.
Disconnection Time after no traffic: It is the NO Response time clock. When no traffic
stage time is beyond the Disconnection time set, Router will automatically halt the tunnel
connection and re-establish it base on the Reconnection Time set. Default setting is 1200
seconds; 180 seconds is minimum time interval for this function.
Reconnection Time: It is the reconnecting time interval after NO TRAFFIC is initiated.
Default setting is 15 minutes; 3 minutes is minimum time interval for this function.
Select the Apply button to update the settings
before new encryption and authentication key will be exchanged. There are two kinds of SAs,
IKE and IPSec. IKE negotiates and establishes SA on behalf of IPSec, an IKE SA is used by
IKE.
Phase 1 (IKE): To issue an initial connection request for a new VPN tunnel. The range can
be from 5 to 15,000 minutes, and the default is 240 minutes.
Phase 2 (IPSec): To negotiate and establish secure authentication. The range can be from 5
to 15,000 minutes, and the default is 60 minutes.
A short SA time increases security by forcing the two parties to update the keys. However,
everytime the VPN tunnel re-negotiates, access through the tunnel will be temporarily
disconnected.
PING for Keepalive: It is used to detect IPSec tunnel connection failure. Connection failure
is defined as abort or in NO response state. In such event Ping to Keepalive takes proper
action to ensure the connection quality of IPSec.
PING to the IP: It is able to IP Ping the remote PC with the specified IP address and alert
when the connection fails. Once alter message is received, Router will drop this tunnel
connection. Reestablish of this connection is required. Default setting is 0.0.0.0 which
disables the function.
Internal: This sets the time interval between Pings to the IP function to monitor the
connection status. Default interval setting is 10 seconds. Time interval can be set from 0 to
3600 second, 0 second disables the function.
Disconnection Time after no traffic: It is the NO Response time clock. When no traffic
stage time is beyond the Disconnection time set, Router will automatically halt the tunnel
connection and re-establish it base on the Reconnection Time set. Default setting is 1200
seconds; 180 seconds is minimum time interval for this function.
Reconnection Time: It is the reconnecting time interval after NO TRAFFIC is initiated.
Default setting is 15 minutes; 3 minutes is minimum time interval for this function.
Select the Apply button to update the settings
.