Doc.Ref
TgbVpn25x_en
Doc.version
1.2 – Nov.2004
VPN version
2.50
IPSec VPN Client User Manual
Property of Sistech SA - © Sistech 2004
12/12
4.4.1
Settings description
Name
Label for Authentication phase used only the configuration user interface. This
value is never used during IKE negotiation. It is possible to change this name
at any time and read it in the tree control. Two Phase 1 can not have the same
name.
Interface
IP address of the network interface of the computer, through which VPN
connection is established. If the IP address may change (when it is received
dynamically by an ISP), select "*".
Remote Gateway
IP address or DNS address of the remote gateway (in our example:
gateway.mydomain.com).
This field is mandatory
.
Pre-shared key
Password or key shared with the remote gateway.
Certificate
X509 certificate used by the VPN client (see certificate configuration).
IKE encryption
Encryption algorithm used during Authentication phase (3DES, AES, ...).
IKE authentication
Authentication algorithm used during Authentication phase (MD5, SHA, ...).
IKE key group
Diffie-Hellman key length.
Once the parameters are set, click on “Save & Apply” to save and to take into account the new configuration.
4.4.2
Advanced configuration ("Advanced" Button)
4.4.3
Settings description
Aggressive Mode
If checked, the VPN client will used aggressive mode as negociation mode with
the remote gateway
Nat port
Negociation port for IKE. Default value is 500.
Local ID
Local ID is the identity the VPN client is sending during Phase 1 to VPN
gateway.
This identity can be:
?
an IP address (type = IP address), for example: 195.100.205.101
?
an domaine name (type = DNS), e.g. mydomain.com
?
an email address (type = Email), e.g.
