SONICWALL SONICOS ENHANCED 2.5 ADMINISTRATOR’S GUIDE
163
Configuring GroupVPN Policies
Configuring GroupVPN with IKE using Preshared Secret
on the WAN Zone
To configure the WAN GroupVPN, follow these steps:
1
Click the Edit icon for the WAN GroupVPN entry. The VPN Policy window is displayed.
2
In the General tab, IKE using Preshared Secret is the default setting for IPSec Keying Mode. A
Shared Secret is automatically generated by the SonicWALL security appliance in the Shared
Secret field, or you can generate your own shared secret. Shared Secrets must be minimum of
four characters. You cannot change the name of any GroupVPN policy.
3
Click the Proposals tab to continue the configuration process.
In the IKE (Phase 1) Proposal section, use the following default settings:
Group 2 from the DH Group menu
3DES from the Encryption menu
SHA1 from the Authentication menu
Leave the default setting, 28800, in the Life Time (secs) field. This setting forces the tunnel to
renegotiate and exchange keys every 8 hours.