Version 5.6
279
November 2008
SIP User's Manual
4. ini File Configuration
Parameter
Description
[IPSec_IKEDB_Table]
Format IKE_DB_INDEX = IKEPolicySharedKey,
IKEPolicyProposalEncryption_0,
IKEPolicypRoposalAuthentication_0,
IKEPolicyProposalDHGroup_0, IKEPolicyProposalEncryption_1,
IKEPolicyProposalAuthentication_1,
IKEPolicyProposalDHGroup_1, IKEPolicyLifeInSec,
IkePolicyAuthenticationMethod;
IPSEC_IKEDB_TABLE 0 = 123456789, 1, 2, 0, 2, 2, 1, 28800, 0;
[\IPSEC_IKEDB_TABLE]
In the example above, a single IKE peer is configured and a pre-
shared key authentication is selected. Its pre-shared key is
123456789. Two security proposals are configured:
DES/SHA1/786DH and 3DES/SHA1/1024DH
Notes:
Each row in the table refers to a different IKE peer.
To support more than one Encryption / Authentication / DH
Group proposal, for each proposal specify the relevant
parameters in the Format line.
The proposal list must be contiguous.
To configure the IKE table using the Web interface, refer to
''Configuring the IKE Table'' on page
.
For an explanation on using
ini
file table parameters, refer to
''Structure of ini File Table Parameters'' on page
.
Secure Hypertext Transport Protocol (HTTPS) Parameters
HTTPSOnly
For a description of this parameter, refer to ''Configuring the
General Security Settings'' on page
HTTPSPort
Determines the local Secured HTTPS port of the device.
The valid range is 1 to 65535 (other restrictions may apply within
this range).
The default port is 443.
HTTPSCipherString
Defines the Cipher string for HTTPS (in OpenSSL cipher list
format). For the valid range values, refer to URL
http://www.openssl.org/docs/apps/ciphers.html. The default is
EXP:RC4.
WebAuthMode
For a description of this parameter, refer to ''Configuring the
General Security Settings'' on page
HTTPSRequireClientCertificate
Requires client certificates for HTTPS connection. The client
certificate must be preloaded to the device, and its matching
private key must be installed on the managing PC. Time and
date must be correctly set on the device, for the client certificate
to be verified.
[0]
= Client certificates are not required (default).
[1]
= Client certificates are required.
Summary of Contents for Mediant 2000
Page 1: ...Document LTRT 68808 November 2008 User s Manual Version 5 6 ...
Page 2: ......
Page 18: ...SIP User s Manual 18 Document LTRT 68808 Mediant 2000 Reader s Notes ...
Page 254: ...SIP User s Manual 254 Document LTRT 68808 Mediant 2000 Reader s Notes ...
Page 334: ...SIP User s Manual 334 Document LTRT 68808 Mediant 2000 Reader s Notes ...
Page 342: ...SIP User s Manual 342 Document LTRT 68808 Mediant 2000 Reader s Notes ...
Page 408: ...SIP User s Manual 408 Document LTRT 68808 Mediant 2000 Reader s Notes ...
Page 414: ...SIP User s Manual 414 Document LTRT 68808 Mediant 2000 Reader s Notes ...
Page 418: ...User s Manual Version 5 6 www audiocodes com ...