Motorola AP-51XX User Manual
Page 266
AP-51xx Access Point Product Reference Guide
6-48
Operation Mode
The Phase I protocols of IKE are based on the ISAKMP identity-
protection and aggressive exchanges. IKE main mode refers to the
identity-protection exchange, and IKE aggressive mode refers to
the aggressive exchange.
•
Main - Standard IKE mode for communication and key
exchange.
•
Aggressive - Aggressive mode is faster, but less secure than
Main mode. Identities are not encrypted unless public key
encryption is used. The authentication method cannot be
negotiated if the initiator chooses public key encryption
Local ID Type
Select the type of ID to be used for the access point end of the SA.
•
IP - Select IP if the local ID type is the IP address specified
as part of the tunnel.
•
FQDN - Use FQDN if the local ID is a fully qualified domain
name (such as
sj.motorola.com
).
•
UFQDN - Select UFQDN if the local ID is a user fully-qualified
email (such as
).
Local ID Data
Specify the FQDN or UFQDN based on the Local ID type assigned.
Remote ID Type
Select the type of ID to be used for the access point end of the
tunnel from the
Remote ID Type
drop-down menu.
•
IP - Select the IP option if the remote ID type is the IP address
specified as part of the tunnel.
•
FQDN - Select FQDN if the remote ID type is a fully qualified
domain name (such as sj.motorola.com). The setting for this
field does not have to be fully qualified, however it must
match the setting for the Certificate Authority.
•
UFQDN - Select this item if the remote ID type is a user
unqualified email address (such as [email protected]).
The setting for this field does not have to be unqualified, it
just must match the setting of the field of the Certificate
Authority.
Remote ID Data
If FQDN or UFQDN is selected, specify the data (either the qualified
domain name or the user name) in the
Remote ID Data
field.