SonicWALL 2.5 Security Camera User Manual


 
SONICWALL SONICOS ENHANCED 2.5 ADMINISTRATORS GUIDE
337
Configuring GroupVPN using the VPN Policy Wizard
6.
In the IKE Security Settings page, you select the security settings for IKE Phase 2 negotiations
and for the VPN tunnel. You can use the defaults settings.
DH Group: The Diffie-Hellman (DH) group are the group of numbers used to create the key
pair. Each subsequent group uses larger numbers to start with. You can choose Group 1,
Group 2, or Group 5. The VPN Uses this during IKE negotiation to create the key pair.
Encryption: This is the method for encrypting data through the VPN Tunnel. The methods are
listed in order of security. DES is the least secure and the and takes the least amount of time to
encrypt and decrypt. AES-256 is the most secure and takes the longest time to encrypt and
decrypt. You can choose. DES, 3DES, AES-128, or AES-256. The VPN uses this for all data
through the tunnel.
Authentication: This is the hashing method used to authenticate the key, once it is exchanged
during IKE negotiation. You can choose MD5 or SHA-1.
Life Time (seconds): This is the length of time the VPN tunnel stays open before needing to
re-authenticate. The default is eight hours (28800).
S
Alert: The SonicWALL Global VPN Client version 1.x is not capable of AES encryption, so if you
chose this method, only SonicWALL Global VPN Client versions 2.x and higher will be able to
connect.
7.
Click Next.
8.
In the User Authentication page, select if you want the VPN Users to be required to authenticate
with the firewall when they connect. If you select Enable User Authentication, you must select
the user group which contains the VPN users. For this example, leave Enable User Authentica-
tion unchecked.