IKE key group:
Diffie-Hellman key length.
You must also add phase 1 IDs in “P1 Advanced” window, if the BiGuard VPN Client from a
LAN.
Config-Mode :
If checked, the VPN Client will activate Config-Mode for this tunnel. Config-Mode
allows to the VPN Client to fetch some VPN Configuration information from the VPN gateway like
DNS/WINS server IP addresses. In case Config-Mode is not available on the remote gateway,
please refer to section 'Phase2 Advanced' settings to manually set DNS/WINS server addresses.
Aggressive Mode:
If checked, the VPN client will used aggressive mode as negotiation mode
with the remote router
.
Redundant GW :
This allows the VPN Client to open an IPSec tunnel with an alternate gateway
in case the primary gateway is down or not responding. Enter either the IP address or the url of
the Redundant Gateway (e.g. router.dyndns.com).
z
BiGuard VPN Client will contact the primary gateway to establish a tunnel. If it fails after
several tries (default is 5 tries, configurable in "Parameters" panel then modify
"Retransmissions" field to modify this default value) the Redundant Gateway is used as the
new tunnel endpoint. Delay between two retries is about 10 seconds.
z
In case primary gateway can be reached but tunnel establishment fails (e.g. VPN
configuration problems) then the VPN Client won't try to establish tunnels with the redundant
gateway. Configurations need modifications.
z
If a tunnel is successfully established to the primary gateway with DPD feature (i.e. Dead
Peer Detection) negotiated on both sides, when the primary gateway stops responding (e.g.