Motorola AP-51XX User Manual

AP-51xx Access Point Product Reference Guide

6-42

AH Authentication

AH provides data authentication and anti-replay services for the
VPN tunnel. Select the required authentication method from the
drop-down menu:

•

None - Disables AH authentication. The rest of the fields are
not active.

•

MD5 - Enables the Message Digest 5 algorithm requiring
128-bit (32-character hexadecimal) keys.

•

SHA1 - Enables Secure Hash Algorithm 1, requiring 160-bit
(40-character hexadecimal) keys.

Inbound AH
Authentication Key

Configure a key for computing the integrity check on inbound traffic
with the selected authentication algorithm. The key must be 32/40
(for MD5/SHA1) hexadecimal (0-9, A-F) characters in length. The
key value must match the corresponding outbound key on the
remote security gateway.

Outbound AH
Authentication Key

Configure a key for computing the integrity check on outbound
traffic with the selected authentication algorithm. The key must be
32/40 (for MD5/SHA1) hexadecimal (0-9, A-F) characters in length.
The key value must match the corresponding inbound key on the
remote security gateway.

Inbound SPI (Hex)

Enter an up to six-character hexadecimal value to identify the
inbound security association created by the AH algorithm. The
value must match the corresponding outbound SPI value configured
on the remote security gateway.

Outbound SPI (Hex)

Provide an up to six-character hexadecimal value to identify the

outbound security association created by the AH algorithm. The
value must match the corresponding inbound SPI value configured
on the remote security gateway.

ESP Type

ESP provides packet encryption, optional data authentication and
anti-replay services for the VPN tunnel. Use the drop-down menu
to select the ESP type. Options include:

•

None - Disables ESP. The rest of the fields are not be active.

•

ESP - Enables ESP for the tunnel.

•

ESP with Authentication - Enables ESP with authentication.