# IPSec parameters

<table><thead><tr><th width="149">Tên Object</th><th width="169">Thiết bị của Khách hàng</th><th>HI GIO</th><th>HI GIO support</th><th width="183">Mô tả</th></tr></thead><tbody><tr><td><strong>VPN Tunnel Name</strong></td><td></td><td></td><td></td><td></td></tr><tr><td><strong>Enabled</strong> </td><td></td><td></td><td></td><td>Mở hoặc tắt tunnel</td></tr><tr><td><strong>Authentication</strong></td><td></td><td></td><td>Pre-Shared Key, Certificate</td><td>Cách xác thực các bên khi thiết lập một tunnel</td></tr><tr><td><strong>Local Endpoint IP Address</strong></td><td></td><td></td><td></td><td>Địa chỉ public IP từ HI GIO</td></tr><tr><td><strong>Local Endpoint Network</strong></td><td></td><td></td><td></td><td>Danh sách các mạng được chia sẻ trong HI GIO cloud có thể truy cập qua tunnel.</td></tr><tr><td><strong>Remote Endpoint IP Address</strong></td><td></td><td></td><td></td><td>Địa chỉ IP public của router phía remote mà bạn đang kết nối.</td></tr><tr><td><strong>Remote Endpoint Network</strong></td><td></td><td></td><td></td><td>Danh sách các mạng phía remote có thể truy cập qua tunnel.</td></tr><tr><td><strong>Remote ID (Optional)</strong></td><td></td><td></td><td></td><td></td></tr><tr><td></td><td></td><td></td><td></td><td></td></tr></tbody></table>

<mark style="color:green;">**IKE Profile (Phase 1)**</mark>

<table><thead><tr><th width="199">Tên Object</th><th>Thiết bị của KH</th><th>HI GIO</th><th>HI GIO support</th><th>Mô tả</th></tr></thead><tbody><tr><td>IKE Version</td><td></td><td></td><td>IKEv1, IKEv2</td><td></td></tr><tr><td>Encryption</td><td></td><td></td><td>AES 128, AES 256, AES-CGM 128, AES-CGM 192, AES-CGM 256</td><td></td></tr><tr><td>Digest</td><td></td><td></td><td>SHA1, SHA 2-256, SHA 2-384, SHA 2-152</td><td>Package Integrity Control Hash Algorithm</td></tr><tr><td>Diffie-Hellman Group</td><td></td><td></td><td><p>Group 2, </p><p>Group 5, </p><p>Group 14, Group 15, Group 16, Group 19, Group 20, Group 21</p></td><td>Encryption Public Key Size</td></tr><tr><td>Association Life Time (seconds)</td><td></td><td></td><td></td><td></td></tr></tbody></table>

<mark style="color:green;">**Cấu hình Tunnel (Phase2)**</mark>

<table><thead><tr><th width="207">Object Name</th><th>Customer's Device</th><th>HI GIO</th><th>HI GIO support</th><th>Description</th></tr></thead><tbody><tr><td>Enabled perfect forward secrecy (PFS)</td><td></td><td></td><td></td><td></td></tr><tr><td>Encryption</td><td></td><td></td><td>AES 128, AES 256, AES-CGM 128, AES-CGM 192, AES-CGM 256</td><td></td></tr><tr><td>Digest Algorithm</td><td></td><td></td><td>SHA1, SHA 2-256, SHA 2-384, SHA 2-152</td><td>Package Integrity Control Hash Algorithm</td></tr><tr><td>Diffie-Hellman Group</td><td></td><td></td><td><p>Group 2, </p><p>Group 5, </p><p>Group 14, Group 15, Group 16, Group 19, Group 20, Group 21</p></td><td></td></tr><tr><td>Association Life Time (seconds)</td><td></td><td></td><td></td><td></td></tr></tbody></table>

<mark style="color:green;">**Cấu hình DPD**</mark>

| Interval |   |   |   |   |
| -------- | - | - | - | - |


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.higiocloud.vn/hi-gio-user-guide-vn/network/2.-vpn/ipsec-parameters.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.