Prestige 334 User’s Guide
157
Chapter 15 VPN Screens
An added feature of the
ESP
is payload padding, which further protects communications by
concealing the size of the packet being transmitted.
15.3 My IP Address
My IP Address
is the WAN IP address of the Prestige. If this field is configured as 0.0.0.0,
then the Prestige will use the current Prestige WAN IP address (static or dynamic) to set up the
VPN tunnel. The Prestige has to rebuild the VPN tunnel if the
My IP Address
changes after
setup.
15.4 Secure Gateway Address
Secure Gateway Address
is the WAN IP address or domain name of the remote IPSec router
(secure gateway).
If the remote secure gateway has a static WAN IP address, enter it in the
Secure Gateway
Address
field. You may alternatively enter the remote secure gateway’s domain name (if it
has one) in the
Secure Gateway Address
field.
You can also enter a remote secure gateway’s domain name in the
Secure Gateway Address
field if the remote secure gateway has a dynamic WAN IP address and is using DDNS. The
Prestige has to rebuild the VPN tunnel each time the remote secure gateway’s WAN IP
address changes (there may be a delay until the DDNS servers are updated with the remote
gateway’s new WAN IP address).
Table 46
AH and ESP
ESP
AH
DES
(default)
Data Encryption Standard (DES) is a widely used method
of data encryption using a secret key. DES applies a 56-bit
key to each 64-bit block of data.
MD5
(default)
MD5 (Message Digest 5) produces a 128-
bit digest to authenticate packet data.
3DES
Triple DES (3DES) is a variant of DES, which iterates three
times with three separate keys (3 x 56 = 168 bits),
effectively doubling the strength of DES.
SHA1
SHA1 (Secure Hash Algorithm) produces
a 160-bit digest to authenticate packet
data.
Select
DES
for minimal security and
3DES
for maximum.
Select
MD5
for minimal security and
SHA-
1
for maximum security.