Item
Setting
Tunnel
Enable
Tunnel Name
Interface
Tunnel Scenario
Site to Site
Site to Host
Host to Site
Host to Host
Hub and Spoke
None
Hub
Spoke
Operation Mode
Always on
Failover
Encapsulation Protocol
AH
ESP
Encapsulation Protocol
AH
ESP
Keep alive
Enable
Ping IP
Ping FQDN
Interval
(
seconds
)
Item
Setting
Local Subnet List
ID
Subnet IP Address
Subnet Mask
Actions
1
-- select one --
255.0.0.0(/8)
255.128.0.0(/9)
255.192.0.0(/10)
255.224.0.0(/11)
255.240.0.0(/12)
255.248.0.0(/13)
255.252.0.0(/14)
255.254.0.0(/15)
255.255.0.0(/16)
255.255.128.0(/17)
255.255.192.0(/18)
255.255.224.0(/19)
255.255.240.0(/20)
255.255.248.0(/21)
255.255.252.0(/22)
255.255.254.0(/23)
255.255.255.0(/24)
255.255.255.128(/25)
255.255.255.192(/26)
255.255.255.224(/27)
255.255.255.240(/28)
255.255.255.248(/29)
255.255.255.252(/30)
255.255.255.255(/32)
Delete
Add
Redirect Traffic
Enable
Full Tunnel
Enable
Remote Subnet List
ID
Subnet IP Address
Subnet Mask
Actions
1
-- select one --
255.0.0.0(/8)
255.128.0.0(/9)
255.192.0.0(/10)
255.224.0.0(/11)
255.240.0.0(/12)
255.248.0.0(/13)
255.252.0.0(/14)
255.254.0.0(/15)
255.255.0.0(/16)
255.255.128.0(/17)
255.255.192.0(/18)
255.255.224.0(/19)
255.255.240.0(/20)
255.255.248.0(/21)
255.255.252.0(/22)
255.255.254.0(/23)
255.255.255.0(/24)
255.255.255.128(/25)
255.255.255.192(/26)
255.255.255.224(/27)
255.255.255.240(/28)
255.255.255.248(/29)
255.255.255.252(/30)
255.255.255.255(/32)
Delete
Add
Remote Gateway
(
IP Address/FQDN
)
Item
Setting
Local Subnet
Local Netmask
Remote Subnet
Remote Netmask
Remote Gateway
(
IP Address/FQDN
)
Item
Setting
Key Management
IKE+Pre-shared Key
IKE+X.509
Manually
Show
Local Certificate
:
Remote Certificate
:
Local ID
Type
:
User Name
FQDN
User@FQDN
KEY ID
ID
:
(Optional)
Remote ID
Type
:
User Name
FQDN
User@FQDN
KEY ID
ID
:
Item
Setting
IKE Version
v1
v2
Negotiation Mode
Main Mode
Aggressive Mode
X-Auth
None
Server
Client
(Optional)
User Name
:
Password
:
Show
Dead Peer Detection (DPD)
Enable
Timeout
:
(
seconds
)
Delay
:
(
seconds
)
Phase1 Key Life Time
(
seconds
)
(Max. 86400)
ID
Encryption
Authentication
DH Group
Definition
1
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
None
Group 1
Group 2
Group 5
Group 14
Group 15
Group 16
Group 17
Group 18
Enable
2
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
None
Group 1
Group 2
Group 5
Group 14
Group 15
Group 16
Group 17
Group 18
Enable
3
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
None
Group 1
Group 2
Group 5
Group 14
Group 15
Group 16
Group 17
Group 18
Enable
4
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
None
Group 1
Group 2
Group 5
Group 14
Group 15
Group 16
Group 17
Group 18
Enable
Item
Setting
Phase2 Key Life Time
(
seconds
)
(Max. 86400)
ID
Encryption
Authentication
PFS Group
Definition
1
None
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
None
Group 1
Group 2
Group 5
Group 14
Group 15
Group 16
Group 17
Group 18
Enable
2
None
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
Enable
3
None
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
Enable
4
None
DES
3DES
AES-auto
AES-128
AES-192
AES-256
None
MD5
SHA1
SHA2-256
SHA2-512
Enable
Item
Setting
Outbound SPI
0x
Inbound SPI
0x
Encryption
DES
3DES
AES-128
AES-192
AES-256 & Key
Authentication
None
MD5
SHA1
SHA2-256 & Key