Справочник Пользователя для ZyXEL Communications 5 Series
Chapter 4 Wizard Setup
ZyWALL 5/35/70 Series User’s Guide
102
4.7 VPN Wizard Status Summary
This read-only screen shows the status of the current VPN setting. Use the summary table to
check whether what you have configured is correct.
check whether what you have configured is correct.
Figure 38 VPN Wizard: VPN Status
Perfect Forward
Secret (PFS)
Secret (PFS)
Perfect Forward Secrecy (PFS) is disabled (None) by default in phase 2 IPSec
SA setup. This allows faster IPSec setup, but is not so secure.
Select DH1, DH2 or DH5 to enable PFS. DH1 refers to Diffie-Hellman Group 1
a 768 bit random number. DH2 refers to Diffie-Hellman Group 2 a 1024 bit
(1Kb) random number (more secure, yet slower). DH5 refers to Diffie-Hellman
Group 5 a 1536-bit random number.
SA setup. This allows faster IPSec setup, but is not so secure.
Select DH1, DH2 or DH5 to enable PFS. DH1 refers to Diffie-Hellman Group 1
a 768 bit random number. DH2 refers to Diffie-Hellman Group 2 a 1024 bit
(1Kb) random number (more secure, yet slower). DH5 refers to Diffie-Hellman
Group 5 a 1536-bit random number.
Back Click
Back to return to the previous screen.
Next
Click Next to continue.
Table 20 VPN Wizard: IPSec Setting (continued)
LABEL
DESCRIPTION