Netgear FVS318Gv2 – ProSAFE VPN Firewall Series 参照マニュアル
Virtual Private Networking Using IPSec and L2TP Connections
244
NETGEAR ProSAFE VPN Firewall FVS318G v2
Local
Identifier Type
From the list, select one of the following ISAKMP identifiers to be used by the VPN
firewall, and specify the identifier in the Identifier field:
firewall, and specify the identifier in the Identifier field:
•
Local Wan IP. The WAN IP address of the VPN firewall. When you select this
option, the Identifier field automatically shows the IP address of the selected
WAN interface.
option, the Identifier field automatically shows the IP address of the selected
WAN interface.
•
FQDN. The Internet address for the VPN firewall.
•
User FQDN. The email address for a local VPN client or the VPN firewall.
•
DER ASN1 DN. A distinguished name (DN) that identifies the VPN firewall in
the DER encoding and ASN.1 format.
the DER encoding and ASN.1 format.
Identifier
Depending on the selection of the Identifier Type list, enter
the IP address, email address, FQDN, or distinguished name.
the IP address, email address, FQDN, or distinguished name.
Remote
Identifier Type
From the list, select one of the following ISAKMP identifiers to be used by the
remote endpoint, and specify the identifier in the Identifier field:
remote endpoint, and specify the identifier in the Identifier field:
•
Remote Wan IP. The WAN IP address of the remote endpoint. When you
select this option, the Identifier field automatically shows the IP address of
the selected WAN interface.
select this option, the Identifier field automatically shows the IP address of
the selected WAN interface.
•
FQDN. The FQDN for a remote gateway.
•
User FQDN. The email address for a remote VPN client or gateway.
•
DER ASN1 DN. A distinguished name (DN) that identifies the remote endpoint
in the DER encoding and ASN.1 format.
in the DER encoding and ASN.1 format.
Identifier
Depending on the selection of the Identifier Type list, enter
the IP address, email address, FQDN, or distinguished name.
the IP address, email address, FQDN, or distinguished name.
IKE SA Parameters
Encryption Algorithm
From the list, select an algorithm to negotiate the security association (SA):
•
DES. Data Encryption Standard (DES).
•
3DES. Triple DES. This is the default algorithm.
•
AES-128. Advanced Encryption Standard (AES) with a 128-bit key size.
•
AES-192. AES with a 192-bit key size.
•
AES-256. AES with a 256-bit key size.
Authentication
Algorithm
Algorithm
From the list, select an algorithm to use in the VPN header for the authentication
process:
process:
•
SHA-1. Hash algorithm that produces a 160-bit digest. This is the default
setting.
setting.
•
MD5. Hash algorithm that produces a 128-bit digest.
Table 51. Add IKE Policy screen settings (continued)
Setting
Description