Virtual Private Networking Using IPSec and L2TP Connections
231
ProSafe Wireless-N 8-Port Gigabit VPN Firewall FVS318N
Traffic Selection
Local IP
From the drop-down list, select the address or addresses that are part of the
VPN tunnel on the wireless VPN firewall:
•
Any
. All computers and devices on the network. Note that you cannot select
Any for both the wireless VPN firewall and the remote endpoint.
•
Single
. A single IP address on the network. Enter the IP address in the Start
IP Address field.
•
Range
. A range of IP addresses on the network. Enter the starting IP address
in the Start IP Address field and the ending IP address in the End IP Address
field.
•
Subnet
. A subnet on the network. Enter the starting IP address in the Start IP
Address field. In addition:
-
Subnet Mask
. For IPv4 addresses on the IPv4 screen only, enter the
subnet mask.
-
IPv6 Prefix Length
. For IPv6 addresses on the IPv6 screen only, enter the
prefix length.
Remote IP
From the drop-down list, select the address or addresses that are part of the
VPN tunnel on the remote endpoint. The selections are the same as for the
Local IP drop-down list.
Manual Policy Parameters
Note:
These fields apply only when you select Manual Policy as the policy type. When you specify the
settings for the fields in this section, a security association (SA) is created.
SPI-Incoming
The Security Parameters Index (SPI) for the inbound policy. Enter a
hexadecimal value between 3 and 8 characters (for example, 0x1234).
Encryption Algorithm
From the drop-down list, select one of the following five algorithms to negotiate
the security association (SA):
•
3DES
. Triple DES. This is the default algorithm.
•
None
. No encryption algorithm.
•
DES
. Data Encryption Standard (DES).
•
AES-128
. Advanced Encryption Standard (AES) with a 128-bit key size.
•
AES-192
. AES with a 192-bit key size.
•
AES-256
. AES with a 256-bit key size.
Key-In
The encryption key for the inbound policy. The length of the key depends on the
selected encryption algorithm:
•
3DES
. Enter 24 characters.
•
None
. Key is not applicable.
•
DES
. Enter 8 characters.
•
AES-128
. Enter 16 characters.
•
AES-192
. Enter 24 characters.
•
AES-256
. Enter 32 characters.
Table 53.
Add New VPN Policy screen settings for IPv4 and IPv6 (continued)
Setting
Description