VPN > Settings
875
SonicOS 5.8.1 Administrator Guide
• AH
–
Encryption:
• DES
• 3DES
• AES-128
• AES-192
• AES-256
• None
–
Authentication:
• MD5
• SHA1
• None
–
Enable Perfect Forward Secrecy
–
Life Time (seconds): (default 28800)
• Enable Keep Alive
• Suppress automatic Access Rules creation for VPN Policy
• Require authentication of VPN clients by XAUTH (not with IKEv2)
–
User Group for XAUTH users (the user group that will have access to this VPN if
XAUTH is selected):
• Enable Windows Networking (NetBIOS) Broadcast
• Enable Multicast
• Apply NAT Policies
–
Translated Local Network:
–
Translated Remote Network:
• Enable OCSP Checking (IKE with 3rd Party Certificate only)
–
OCSP Responder URL: (IKE with 3rd Party Certificate only)
• Management via this SA:
–
HTTP
–
HTTPS
–
SSH
• User login via this SA:
–
HTTP
–
HTTPS
• Default LAN Gateway (optional):
• VPN Policy bound to:
• Do not send trigger packet during IKE SA negotiation (IKEv2 only)
On the Responder
The settings on the responder must be the same as on the initiator except:
