19216811.liveBillion 810VGTX Router
Page | 80
SA Lifetime:
Specify the number of minutes that a Security Association (SA) will stay active before new encryption and
authentication keys will be exchanged. There are two kinds of SAs, IKE and IPSec. IKE negotiates and establishes SA
on behalf of IPSec; an IKE SA is used by IKE.
Phase 1 (IKE):
To issue an initial connection request for a new VPN tunnel. The range can be from 5 to
15,000 minutes, and the default is 480 minutes.
Phase 2 (IPSec):
To negotiate and establish secure authentication. The range can be from 5 to 15,000 minutes,
and the default is 60 minutes.
A short SA time increases security by forcing the two parties to update the keys. However, every time the VPN
tunnel re-negotiates, access through the tunnel will be temporarily disconnected.
PING for Keep Alive:
None:
The default setting is ‘None’. In this mode, it will not detect if the remote IPSec peer has been lost or not.
It follows the policy of Disconnection time after no traffic, which the remote IPSec will be disconnected after the
time you set in this function.
PING:
This mode will detect if the remote IPSec peer has been lost or not by pinging the specified IP address.
DPD:
Dead peer detection (DPD) is a keep alive mechanism that enables the router to be detected when the
connection between the router and a remote IPSec peer has been lost. Please note, it must be enabled on
both sites.
PING to the IP:
It is able to Ping the remote PC with the specified IP address and alert if the connection fails. Once
an alert message is received, the router will drop this tunnel connection. Re-establishment of this connection is
required. Default setting is 0.0.0.0 which disables the function.
Interval:
This sets the time interval between Pings to the IP function to monitor the connection status. Default
interval setting is 10 seconds. Time interval can be set from 0 to 3600 second, 0 second disables the function.
Ping to the IP
Interval (sec)
Ping to the IP Action
0.0.0.0
0
No
0.0.0.0
2000
No
xxx.xxx.xxx.xxx (A valid IP Address)
0
No
xxx.xxx.xxx.xxx (A valid IP Address)
2000
Yes, active it in every 2000 seconds
Disconnection Time after no traffic:
It is the NO Response time clock. When no traffic stage time is beyond the
Disconnection time set, Router will automatically halt the tunnel connection and re-establish it base on the
Reconnection Time set. 180 seconds is minimum time interval for this function.
Reconnection Time:
It is the reconnecting time interval after NO TRAFFIC is initiated. 3 minutes is minimum time
interval for this function.
Click Edit/Delete to save your changes.