Manual
AirLive IP-2000VPN User’s Manual
95
Data – Authentication and Encryption
Setting Type Value Notes
IKE Direction
Both Directions Do not have to match with Site B. Either
endpoint can block 1 direction.
Local Identify
WAN IP Address System will detect the IP address and fill
in the form automatically. It is the most
common ID method.
Remote Identify
Remote WAN IP
Address
System will detect the IP address and fill
in the form automatically. It is the most
common ID method.
IKE Authentication
method
Pre-shared Key 12345678 Certificates are not widely used.
IKE Authentication
algorithm
MD5 Must match with Site B
IKE Encryption
3DES Must match with Site B
IKE Exchange
mode
Main Mode Must match with Site B
DH Group
Group 2 (1024 Bit) Must match with Site B
IKE SA Life time
180 Shorter period will be used.
IKE Keep Alive
Enable 192.168.0.1 Used to set the LAN IP address of
IP-2000VPN at Site B.
IKE PFS
Disable Must match with Site B
IPSec SA Parameters
IPSec SA Life time
300 Shorter period will be used.
IPSec PFS
Disable Must match with Site B
AH Authentication
Disable AH is rarely used.
ESP Authentication
Enable MD5 Must match with Site B
ESP Encryption
Enable 3DES Must match with Site B