What is the default proposal for Nebula-to-Nebula VPN on Nebula Security Gateway?
Zyxel_Irene
Posts: 118 
Zyxel Employee
Zyxel Employee
The default proposal for Nebula-to-Nebula VPN is as following:
[Nebula Security Gateway]
IKE version: IKEv1
Negotiation Mode: MainPhase 1
-Encryption: 3DES
-Authentication: SHA256
-Diffie-Hellman group: DH1
-SA Lifetime (seconds): 84600
Phase 2
-Encryption: 3DES
-Authentication: SHA256
-PFS group: none
-Lifetime (seconds): 84600
[USG FLEX Series/ATP Series]
IKE version: IKEv2
Negotiation Mode: MainPhase 1
-Encryption: AES128
-Authentication: SHA1(SHA128)
-Diffie-Hellman group: DH2
-SA Lifetime (seconds): 84600
Phase 2
-Encryption: AES128
-Authentication: SHA1(SHA128)
-PFS group: DH2
-Lifetime (seconds): 28800
Tagged:
0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight