•
What method will you use to configure your VPN tunnels?
— The VPN Wizard using VPNC defaults (see
— The typical automated Internet Key Exchange (IKE) setup (see
Configure VPN Tunnels" on page
— A Manual Keying setup in which you must specify each phase of the connection (see
"Using Manual Policy to Configure VPN Tunnels" on page
Table 8-2.
Parameters Recommended by the VPNC and Used in the VPN Wizard
Parameter
Secure Association
Authentication Method
Encryption Method
Authentication Protocol
Diffie-Hellman (DH) Group
Key Life
IKE Life Time
NETBIOS
•
What level of IPSec VPN encryption will you use?
— DES - The Data Encryption Standard (DES) processes input data that is 64 bits wide,
encrypting these values using a 56 bit key. Faster but less secure than 3DES.
— 3DES - (Triple DES) achieves a higher level of security by encrypting the data three times
using DES with three different, unrelated keys.
•
What level of authentication will you use?
— MDS: 128 bits, faster but less secure.
— SHA-1: 160 bits, slower but more secure.
Note: NETGEAR publishes additional interoperability scenarios with various gateway
and client software products. Look on the NETGEAR web site at
www.netgear.com
Virtual Private Networking (Advanced Feature)
Reference Manual for the Model Wireless ADSL Firewall Router DG834G
8-36)
for these interoperability scenarios.
202-10006-05, June 2005
Table
8-2)
8-48)?
Factory Default
Main Mode
Pre-shared Key
3DES
SHA-1
Group 2 (1024 bit)
8 hours
1 hour
Enabled
"Using Auto Policy to
8-5