How To establish an IPSec VPN tunnel with LB-2 VPN
Property of HotBrick — 2005
6
Figure 6 - Policy Setup for Site B
25. Under Key Management there are two types: Autokey (IKE) or Manual Key.
26. If AutoKey (IKE) is selected, your Phase 1 Negotiation can be Main Mode or Aggressive Mode. In
our example we used Main Mode.
27. For Perfect Forward Secrecy you can choose to enable it or not. In our example we have used
DH Group 2 (1024-bit).
28. The Preshared Key must be characters and/or hexadecimal units. The preshared key entered in
our example is “hotbrick”.
29. The Key life time can be set in seconds with zero indicating no expirations. In our example we
used 28800 seconds or eight hours.
30. For the service In Volume we left the default 0 Kbytes.
31. If Manual Key was chosen the encryption key and authentication key would have to be entered
using characters and/or hexadecimal units. Please see figure 7 below.
Figure 7- Manual Key.