Netgear FVS318v1 – Prosafe Wireless N VPN Firewall 参照マニュアル

6-10

Virtual Private Networking

•

Will the local end be any device on the LAN, a portion of the local network (as defined by a 
subnet or by a range of IP addresses), or a single PC?

•

Will the remote end be any device on the remote LAN, a portion of the remote network (as 
defined by a subnet or by a range of IP addresses), or a single PC?

•

At least one side must have a fixed IP address or you must be using a dynamic DNS service for 
FQDN configurations. Otherwise, if one side has a dynamic IP address, the side with a 
dynamic IP address must always be the initiator of the connection.

•

Will you use the typical automated Internet Key Exchange (IKE) setup, or a Manual Keying 
setup in which you must specify each phase of the connection? 

•

For the WAN connection, what level of IPSec VPN encryption will you use?

— DES - The Data Encryption Standard (DES) processes input data that is 64 bits wide, 

encrypting these values using a 56 bit key. Faster but less secure than 3DES or AES. 

— 3DES - (Triple DES) achieves a higher level of security by encrypting the data three times 

using DES with three different, unrelated keys. 

— AES - 128, - 192, or - 256. Most secure. Advanced Encryption Standard, a symmetric 

128-bit block data encryption technique. The the key length can be specified to 128, 192 
or 256 bits.The U.S government adopted the algorithm as its encryption technique in 
October 2000, replacing the DES encryption it used. AES works at multiple network 
layers simultaneously.