Enable encryption, Encryption method, Encryption secret – Compatible Systems 5.4 User Manual

Chapter 6 - VPN Ports and LAN-to-LAN Tunnels

103

Enable Encryption

This checkbox controls whether all tunnel traffic will be encrypted.

•

If checked, each packet will be digitally scrambled before sending. The
receiving end of the tunnel will unscramble the data using a shared key
before allowing the traffic onto its local network.

Encryption Method

This pull-down menu allows an encryption method to be specified.

•

If None is selected, the tunnel session will be sent in the clear in both
directions.

•

If Fixed is selected, Personal Level Encryption will be used to scramble
the data using a fixed key.

•

If PLE is selected, Personal Level Encryption will be used to scramble
the data using a key generated from the encryption secret.

•

If DES56 is selected, the DES algorithm will be used. DES provides
better security than PLE, but also requires more time to operate.

•

If 3DES is selected, the Triple DES algorithm will be used. In Triple
DES, the data is processed three times, each time with a different 56-bit
key.

v Note: Some VPN devices may not allow 3DES as an option.
Encryption Secret

This secret is used to generate session keys which are used to encrypt/decrypt
each packet received from or sent through the tunnel. The secret can be from
1 to 255 characters in length.

v Note: PLE, DES56 and 3DES all require that the same Encryption
Secret be configured for each end of the tunnel.

Interoperability Settings Dialog Box

This dialog box enables the IntraPort to interoperate with other vendors’
devices. If the remote Tunnel Partner is a Compatible Systems device, it is not
necessary to configure these settings. Interoperability settings are individu-
ally set for each tunnel partner.