FPCVpnNetworkIPSecSettings Object

The FPCVpnNetworkIPSecSettings object defines the Internet Protocol security (IPsec) settings for site-to-site virtual private network (VPN) connections to a remote site network.

When IPsec is used for site-to-site VPN connections, in addition to configuring the properties of this object, a valid default gateway must be set for the network adapter that listens for the site-to-site VPN connections.

The FPCVpnNetworkIPSecSettings object can be accessed through the IPSecSettings property of an FPCVpnNetworkConfiguration object when the NetworkConnectionType property of the containing FPCNetwork object is set to fpcIPSecConnection.

Click here to see the Forefront TMG object hierarchy.

Methods

The FPCVpnNetworkIPSecSettings object defines the following methods.

Method Description

Refresh

Reads the values of all of the object's properties from persistent storage, discarding any changes that have not been saved.

Save

Writes the current values of all of the object's properties to persistent storage.

Properties

The FPCVpnNetworkIPSecSettings object defines the following properties.

Property Description

AuthenticationMethod

Gets or sets a value from the FpcVpnAuthenticationMethod enumerated type that specifies which IPsec authentication method is to be used.

CertificateAuthority

Gets or sets the name of the certification authority (CA) for the certificates used for IPsec authentication.

LocalServerAddress

Gets or sets the IP address of the local VPN tunnel endpoint.

Phase1DHGroup

Gets or sets a value from the FpcVpnDiffieHellmanGroup enumerated type that specifies the Diffie-Hellman group to be used in Phase 1 of the IPsec negotiation process.

Phase1Encryption

Gets or sets a value from the FpcVpnEncryptionAlgorithm enumerated type that specifies the encryption algorithm to be used in Phase 1 of the IPsec negotiation process.

Phase1Integrity

Gets or sets a value from the FpcVpnIntegrityAlgorithm enumerated type that specifies the integrity algorithm to be used in Phase 1 of the IPsec negotiation process.

Phase1RekeyingTime

Gets or sets the Phase 1 rekeying time, in seconds.

Phase2DHGroup

Gets or sets a value from the FpcVpnDiffieHellmanGroup enumerated type that specifies the Diffie-Hellman group to be used in Phase 2 of the IPsec negotiation process.

Phase2Encryption

Gets or sets a value from the FpcVpnEncryptionAlgorithm enumerated type that specifies the encryption algorithm to be used in Phase 2 of the IPsec negotiation process.

Phase2Integrity

Gets or sets a value from the FpcVpnIntegrityAlgorithm enumerated type that specifies the integrity algorithm to be used in Phase 2 of the IPsec negotiation process.

Phase2KBRekeying

Gets or sets the amount of data transferred before Phase 2 rekeying, in kilobytes (KB).

Phase2RekeyingTime

Gets or sets the Phase 2 rekeying time, in seconds.

Phase2UseKBRekeying

Gets or sets a Boolean value that indicates whether Phase 2 KB rekeying is to be used.

Phase2UsePFS

Gets or sets a Boolean value that indicates whether Perfect Forward Secrecy (PFS) is to be used for Phase 2.

Phase2UseTimeRekeying

Gets or sets a Boolean value that indicates whether Phase 2 time-based rekeying is to be used.

PresharedKey

Gets or sets the preshared key for IPsec authentication.

RemoteServerAddress

Gets or sets the IP address of the remote VPN tunnel endpoint.

Interfaces for C++ Programming

This object implements the IFPCVpnNetworkIPSecSettings interface.

Requirements

Client Requires Windows Vista or Windows XP.
Server Requires Windows Server 2008.
Version Requires Forefront Threat Management Gateway (TMG).
IDL

Declared in Msfpccom.idl.

See Also

COM Objects


Send comments about this topic to Microsoft

Build date: 11/30/2009

© 2008 Microsoft Corporation. All rights reserved.