Ipsec gateway dialog box, Ipsec gateway, Ateway – Compatible Systems 5.4 User Manual

128

Chapter 7 - VPN Client Tunnels

2.

The second piece is the encryption algorithm. DES (Data Encryption
Standard) uses a 56-bit key to scramble the data. 3DES uses three
different keys and three applications of the DES algorithm to scramble
the data.

3.

The third piece is the Diffie-Hellman group to be used for key exchange.
Because larger numbers are used by the Group 2 (G2) algorithm, it is
more secure than Group 1 (G1).

Use the Move Up and Move Down buttons to arrange the priority of the
protection suites.

v Note: Phase 2 IKE negotiation sets how the IntraPort server and client will
handle individual tunnel sessions. Phase 2 IKE negotiation parameters are
set in the VPN Group Configuration Dialog Box, in the IKE Configuration
Tab.

IPSec Gateway Dialog Box

IPSec Gateway Configuration Dialog Box

To access this dialog box, select Global/IPSecGateway in the Device View.

>

IPSec Gateway

This is the IP address that will be used as the gateway to the Internet for IPSec
traffic on a dual-Ethernet IntraPort VPN Access Server. This is a required
parameter only when the device is set to operate in parallel with your existing
firewall (i.e. using both Ethernet ports) as the IPSec component of your secu-
rity system.

The address should be entered as four decimal numbers separated by periods
(e.g. 198.238.9.1).

v Note: This IP address must be on the same IP network as the IPSec inter-
face, which is configured using the IP Connection Dialog Box (under
Ethernet/IP Connection on the IPSec port of an IntraPort VPN Access Server
with two or more Ethernet interfaces).