Wizards > VPN Wizard
1419
SonicOS 5.8.1 Administrator Guide
–
DH Group: The Diffie-Hellman (DH) group are the group of numbers used to create the
key pair. Each subsequent group uses larger numbers to start with. You can choose
Group 1, Group 2, or Group 5. The VPN Uses this during IKE negotiation to create the
key pair.
–
Encryption: This is the method for encrypting data through the VPN Tunnel. The
methods are listed in order of security. DES is the least secure and the and takes the
least amount of time to encrypt and decrypt. AES-256 is the most secure and takes the
longest time to encrypt and decrypt. You can choose. DES, 3DES, AES-128, or AES-
256. The VPN uses this for all data through the tunnel.
–
Authentication: This is the hashing method used to authenticate the key, once it is
exchanged during IKE negotiation. You can choose MD5 or SHA-1.
–
Life Time (seconds): This is the length of time the VPN tunnel stays open before
needing to re-authenticate. The default is eight hours (28800).
Warning
The SonicWALL Global VPN Client version 1.x is not capable of AES encryption, so
if you chose this method, only SonicWALL Global VPN Client versions 2.x and higher
will be able to connect.
Step 7 Click Next.
Step 8 In the User Authentication page, select if you want the VPN Users to be required to
authenticate with the firewall when they connect. If you select Enable User Authentication,
you must select the user group which contains the VPN users. For this example, leave Enable
User Authentication unchecked.