Line 447: |
Line 447: |
| [[Image:Services vpn ipsec phase.PNG]] | | [[Image:Services vpn ipsec phase.PNG]] |
| | | |
− | {| class="wikitable"
| + | <table class="nd-mantable"> |
− | |+
| + | <tr> |
− | ! style="width: 250px; border: 1px solid white; border-bottom: 2px solid #0054A6; background: white; color: #0054A6; text-align: left;" | FIELD NAME
| + | <th>field name</th> |
− | ! style="width: 250px; border: 1px solid white; border-bottom: 2px solid #0054A6; background: white; color: #0054A6; text-align: left;" | VALUE
| + | <th>value</th> |
− | ! style="width: 579px; border: 1px solid white; border-bottom: 2px solid #0054A6; background: white; color: #0054A6; text-align: left;" | DESCRIPTION
| + | <th>description</th> |
− | |-
| + | </tr> |
− | ! style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | Encryption algorithm
| + | <tr> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | DES {{!}} 3DES {{!}} AES 128 {{!}} AES 192 {{!}} AES256; Default: '''3DES'''
| + | <td>Encryption algorithm</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | The encryption algorithm must match with another incoming connection
| + | <td>DES {{!}} 3DES {{!}} AES 128 {{!}} AES 192 {{!}} AES256; Default: '''3DES'''</td> |
− | |-
| + | <td>The encryption algorithm must match with another incoming connection</td> |
− | ! style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | Authentication
| + | </tr> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | MD5 {{!}} SHA1 {{!}} SHA256 {{!}} SHA384 {{!}} SHA512; Default: '''SHA1'''
| + | <tr> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | The authentication algorithm must match with another incoming connection
| + | <td>Authentication</td> |
− | |-
| + | <td>MD5 {{!}} SHA1 {{!}} SHA256 {{!}} SHA384 {{!}} SHA512; Default: '''SHA1'''</td> |
− | ! style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | Has algorithm
| + | <td>The authentication algorithm must match with another incoming connection</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | MD5 {{!}} SHA1 {{!}} SHA256 {{!}} SHA384 {{!}} SHA512; Default: '''SHA1'''
| + | </tr> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | The hash algorithm must match with another incoming connection
| + | <tr> |
− | |-
| + | <td>Has algorithm</td> |
− | ! style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | DH group
| + | <td>MD5 {{!}} SHA1 {{!}} SHA256 {{!}} SHA384 {{!}} SHA512; Default: '''SHA1'''</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | MODP768 {{!}} MODP1024 {{!}} MODP1536 {{!}} MODP2048 {{!}} MODP3072 {{!}} MODP4096; Default: '''MODP1536'''
| + | <td>The hash algorithm must match with another incoming connection</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | The DH (Diffie-Helman) group must match with another incoming connection
| + | </tr> |
− | |-
| + | <tr> |
− | ! style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | PFS group
| + | <td>DH group</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | MODP768 {{!}} MODP1024 {{!}} MODP1536 {{!}} MODP2048 {{!}} MODP3072 {{!}} MODP4096 {{!}} No PFS; Default: '''MODP1536'''
| + | <td>MODP768 {{!}} MODP1024 {{!}} MODP1536 {{!}} MODP2048 {{!}} MODP3072 {{!}} MODP4096; Default: '''MODP1536'''</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | The PFS (Perfect Forward Secrecy) group must match with another incoming connection
| + | <td>The DH (Diffie-Helman) group must match with another incoming connection</td> |
− | |-
| + | </tr> |
− | ! style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | Lifetime
| + | <tr> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | time; Default: '''8 hours'''
| + | <td>PFS group</td> |
− | | style="border: 1px solid white; border-bottom: 2px solid #E8E8E8; text-align: left; vertical-align: top; background: white;" | Duration for the phase
| + | <td>MODP768 {{!}} MODP1024 {{!}} MODP1536 {{!}} MODP2048 {{!}} MODP3072 {{!}} MODP4096 {{!}} No PFS; Default: '''MODP1536'''</td> |
− | |-
| + | <td>The PFS (Perfect Forward Secrecy) group must match with another incoming connection</td> |
− | |}
| + | </tr> |
| + | <tr> |
| + | <td>Lifetime</td> |
| + | <td>time; Default: '''8 hours'''</td> |
| + | <td>Duration for the phase</td> |
| + | </tr> |
| + | </table> |
| | | |
| ==GRE Tunnel== | | ==GRE Tunnel== |