TMS zl Management and Configuration Guide ST.1.1.100430
7-490
Virtual Private Networks
Configure a Windows Vista Client for L2TP over IPsec
Key Exchange Mode Main Mode Add IKE Policy—Step 2 of 3
Authentication Meth-
od
•Preshared Key
• RSA Signature
• DSA Signature
Setting in the Edit Authen-
tication Methods window
(step 50 on page 7-471)
Preshared Key Matches the string configured on the
remote client
String in the Edit Authen-
tication Methods window
(step 50 on page 7-471)
Security Parameters
Proposal
3. SA Lifetime—300 to 86400 seconds
4. DH Group:
• Group 1 (760)
• Group 2 (1024)
5. Encryption Algorithm:
•DES
•3DES
6. Authentication Algorithm:
•MD5
•SHA-1
IKE Security Methods
(step 60 on page 7-476)
XAUTH Configuration Disable XAUTH Add IKE Policy—Step 3 of 3
IPsec proposal
Encapsulation Mode Transport Add IPsec Proposal
Protocol ESP Custom Security Method
Settings for the filter ac-
tion (step 41 on page 7-
466)
Encryption Algorithm • DES
•3DES
Encryption algorithm in
Custom Security Method
Settings for the filter ac-
tion (step 41c on page 7-
466)
Authentication Algo-
rithm
•MD5
•SHA-1
Integrity algorithm in Cus-
tom Security Method Set-
tings for the filter action
(step 41b on page 7-466)
Parameter Valid Settings Configuration Window Matching Setting on the
Windows Vista Client