Netgear FVS318N – Prosafe Wireless N VPN Firewall プリント
VPN Mode Configuration Commands
218
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Command example:
FVS318N> vpn ipsec mode_config configure iphone
vpn-config[modeConfig]> first_pool_start_ip 10.100.10.1
vpn-config[modeConfig]> first_pool_end_ip 10.100.10.12
vpn-config[modeConfig]> dns_server_primary_ip 192.168.1.1
vpn-config[modeConfig]> pfs_key_group Y
vpn-config[modeConfig]> dh_group Group2_1024_bit
vpn-config[modeConfig]> sa_lifetime_type Seconds
vpn-config[modeConfig]> sa_lifetime 3600
vpn-config[modeConfig]> encryption_algorithm 3DES
vpn-config[modeConfig]> integrity_algorithm SHA-1
vpn-config[modeConfig]> local_ip 192.168.1.0
vpn-config[modeConfig]> local_subnet_mask 255.255.255.0
vpn-config[modeConfig]> save
Related show command:
encryption_algorithm
None
, DES, 3DES, AES-128,
AES-192
, or AES-256
Specifies the encryption algorithm, if any, to
negotiate the security association (SA):
negotiate the security association (SA):
• None.
• DES. Data Encryption Standard (DES).
• 3DES. Triple DES.
• AES-128. Advanced Encryption Standard
(AES) with a 128-bit key size.
• AES-192. AES with a 192-bit key size.
• AES-256. AES with a 256-bit key size.
integrity_algorithm
MD5
or SHA-1
Specifies the authentication (integrity)
algorithm to negotiate the security
association (SA):
algorithm to negotiate the security
association (SA):
• SHA-1. Hash algorithm that produces a
160-bit digest.
• MD5. Hash algorithm that produces a
128-bit digest.
local_ip
ipaddress
The local IPv4 address to which remote VPN
clients have access. If you do not specify a
local IP address, the wireless VPN firewall’s
default LAN IP address is used.
clients have access. If you do not specify a
local IP address, the wireless VPN firewall’s
default LAN IP address is used.
local_subnet_mask
subnet mask
The local subnet mask.
Keyword
Associated Keyword to
Select or Parameter to Type
Select or Parameter to Type
Description