Support Center FAQ VPN FAQ
 
  
Q. Does Vigor VPN support 3DES in the phase 1 of IKE/IPSec process ?

Yes, however Vigor router reduces the complexity of IPSec phase 1 setup to enable easy configuration. You cannot configure any security settings for phase 1. It will propose both DES and 3DES for responder ( server side ) selection. If the server side is also a Vigor router then it will select the first common protocol, which will be DES. Therefore, there is no way to configure two Vigor devices to have 3DES encryption for phase 1. It is a trade-off between flexibility and easy configuration.

If the remote device is not a Vigor, and it allows you select the protocol for phase 1, then it maybe possible to select 3DES or DES as preferred. This also applies to selecting MD5 or SHA1 for authentication and D-H group 1 or group 2 for key generation in phase 1 and phase 2.


Page last modified : 13 October 2008   
Corporate  |   Products Center  |   Information Center  |   Support Center  |   Contact us  |   Register form  |   Customer Survey  |   SiteMap  |   Legal Announcement
Please use IE 5.0 or above ( resolution 1024 * 768 ) for best display.     Copyright © 1997~2008 by DrayTek Corp.