Caimore CM3155R User Manual

Contents

Caimore CM3155R User Manual Manual pdf 54 page image

Xiamen Caimore Communication Technology Co.,Ltd2 F, 37#, Wanghai Road, Software Park 2, Xiamen,China (361009)Tel:+86 592 5901215 web:www.caimore.com/emain.asp54Tunnel Mode：usually used when establishing tunnel between two RoutersPassthrough Mode：allow IPSEC protocol passthrough. Local endpoint type:Network-To-Network：used communication between equipments of RouterRoad Warrior：connect to server as mobile clients end. Subnet： When working mode is Network-To-Network, are network of both sides. Nexthop IP： When device is in LAN, then this IP is the IP address of devicespointed Router. IPsec port： when start L2tp, L2tp monitor port. L2tp default port is 1701. IPsec Identity：Identity supplied to opposite side when connection negotiation.Phase 1 ：Phase 1 establish IPsec SA, supply IPSec service for data communication. Work Mode：Main and Aggressive mode. PFS ： Precise transmit secrecy. Avoid when single key leaking to affect wholecommunication system Debug： Enable debug information Enable NAT Traversal： If this Router doesn’t connect with public network, buttransmit through IP original address, then please use “enable NAT Traversal” Authentication： Pre-shared Key mode and Certificates X509 mode. Cipher ： DES,3DES,AES and AES128 Hash ： SHA1 and MD5 DH group： Group1 、Group2 、Group5 、Group14 、Group15 、Group16 、Group17 and Group18 SA lifetime (s): phase negotiation valid time Key： when Pre-shared Key，it is shared key. Password： when Certificate X509, key of the certificates.Phase 2 ： Phase 2 is protected by phase 1, any message didn’t protect by phase 1 SA isrefused. In phase 2, negotiate communication protocol fast, change key and establish