Twin WAN Series – User Guide | v1
Remote Security Gateway
You can either select remote side domain name or remote side IP address (WAN IP
address) as your remote side security gateway.
Figure 18-c. Traffic Selector Console.
The Security level allows you to set the Encryption and Authentication method for the
Policy. The drop-down menus are arranged from the weakest to the strongest. They all
have their benefits. Pick the security level which provides adequate throughput for your
network's needs. The local and the remote side must use the same Encryption and
Authentication method to work together.
Security Level - Settings
Encryption Method
This field allows you to select the algorithm used to encrypt the VPN packets. Data
encryption makes the data unreadable if intercepted. There are three encryption methods
available: DES, 3DES and AES. The default is null.
•
Null
- fastest method but it offers no security.
•
DES
- faster than 3DES but less secure.
•
3DES
- most secure method but also lowest throughput.
•
AES
- more secure than either DES or 3DES. The higher the bit rate, the stronger
the encryption but the trade-off is lower throughput.
Authentication
This field allows you to select a method to authenticate the ESP packets. Packet
authentication confirms the data’s source. There are three authentications available:
MD5, SHA1 and SHA2.
•
Null
- fastest method but it offers no security.
•
MD5
- faster than SHA1 or SHA2 but less secure.
•
SHA1
- faster than SHA2 but less secure.
•
SHA2
- slower than SHA1 or MD5 but more secure. The higher the bit rate, the
stronger the encryption but the trade-off is lower throughput.
Copyright © 2005 WINS International, LLC dba XiNCOM | All rights reserved.
65
