AXISHK
asked on
VPN Configuration
Need to provide the following information for VPN configuration between two different VPN box. Can you assign me to understand the following ?
For the preshared key used in Phrase 1, it will not used in Phrase 2. Does it mean the box will generate a key for phrase 2 ? Thx
Phase1:
mode config: enable or disable
NAT-T : enable or disable
dpd : enable or disable
Authentication: preshared key
IKE: ver1 or ver2
Mode: main or aggressive
phase1 proposal: encryption method and authentication method
DH group:
Phase2:
phase2 proposal: encryption method and authentication method
DH group:
Replay detection:enable or disable
PFS:enable or disable
For the preshared key used in Phrase 1, it will not used in Phrase 2. Does it mean the box will generate a key for phrase 2 ? Thx
Phase1:
mode config: enable or disable
NAT-T : enable or disable
dpd : enable or disable
Authentication: preshared key
IKE: ver1 or ver2
Mode: main or aggressive
phase1 proposal: encryption method and authentication method
DH group:
Phase2:
phase2 proposal: encryption method and authentication method
DH group:
Replay detection:enable or disable
PFS:enable or disable
ASKER
How about DH group ?
Hi AXISHK,
Kindly elaborate more on the query.
Kindly elaborate more on the query.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thx
Once the communication channel is established (tunnel), the data is then securely transferred over the tunnel using the phase 2 parameters.