Netgear FVX538v1 – ProSafe VPN Firewall Dual WAN with 8-Port 10/100 and 1 Gigabit LAN Port Switch 参照マニュアル
ProSafe VPN Firewall 200 FVX538 Reference Manual
Virtual Private Networking
5-15
v1.0, March 2009
To view FVX538 VPN logs, go to Monitoring > VPNLogs.
VPN Tunnel Policies
When you use the VPN Wizard to set up a VPN tunnel, both a VPN Policy and an IKE Policy are
established and populated in both Policy Tables. The name you selected as the VPN Tunnel
connection name during Wizard setup identifies both the VPN Policy and IKE Policy. You can edit
existing policies, or add new VPN and IKE policies directly in the Policy Tables.
established and populated in both Policy Tables. The name you selected as the VPN Tunnel
connection name during Wizard setup identifies both the VPN Policy and IKE Policy. You can edit
existing policies, or add new VPN and IKE policies directly in the Policy Tables.
IKE Policy
The IKE (Internet Key Exchange) protocol performs negotiations between the two VPN
Gateways, and provides automatic management of the Keys used in IPSec. It is important to
remember that:
Gateways, and provides automatic management of the Keys used in IPSec. It is important to
remember that:
•
“Auto” generated VPN policies must use the IKE negotiation protocol.
•
“Manual” generated VPN policies cannot use the IKE negotiation protocol.
Managing IKE Policies
IKE Policies are activated when:
1. The VPN Policy Selector determines that some traffic matches an existing VPN Policy. If the
VPN policy is of type “Auto”, then the Auto Policy Parameters defined in the VPN Policy
are accessed which specify which IKE Policy to use.
are accessed which specify which IKE Policy to use.
Figure 5-19