CHAPTER 25. IPSEC
296
© SAMSUNG Electronics Co., Ltd.
The security requirements are as follows:
Phase 1: 3DES with SHA1, Mode Configuration
Phase 2: IPSec ESP tunnel with AES256 and HMAC-SHA1
1.
Configure a WAN bundle of network type untrusted.
Router/configure# interface bundle wan1
message: Configuring new bundle
Router/configure/interface/bundle wan1# link t1 1/1
Router/configure/interface/bundle wan1# encapsulation ppp
Router/configure/interface/bundle wan1# ip address
172.16.0.1 24
Router/configure/interface/bundle wan1# crypto untrusted
Router/configure/interface/bundle wan1# exit
2.
Configure the Ethernet interface with trusted network type.
Router/configure# interface ethernet 0/1
message: Configuring existing Ethernet interface
Router/configure interface/ethernet(0/1)# ip address
10.0.1.1 24
Router/configure/interface/ethernet(0/1)# crypto trusted
Router/configure/interface/ethernet(0/1)# exit
3.
Display the crypto interfaces.
Router# show crypto interfaces
Interface Network
Corporate Headquarters
10.0.1.0/24
Router #1
VPN Server
172.16.0.1
Mode Config IP
Pool: 10.0.1.100.10.02.150
IPSec Tunnel
VPN Client 1
Local Outer Address: Dynamic
Local Inner Address: 10.0.1.100/32
Local ID: [email protected]
VPN Client 1
Local Outer Address: Dynamic
Local Inner Address: 10.0.1.101/32
Local ID: [email protected]
IPSec Tunnel
Summary of Contents for Ubigate iBG3026
Page 1: ......
Page 16: ...INTRODUCTION XIV SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 32: ...TABLE OF CONTENTS XXX SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 34: ......
Page 64: ...CHAPTER 4 System Logging 30 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 72: ......
Page 94: ...CHAPTER 7 WAN Interfaces 58 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 110: ......
Page 156: ...CHAPTER 15 BGP 118 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 178: ...CHAPTER 17 VRRP 140 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 262: ......
Page 288: ...CHAPTER 23 Firewall NAT 248 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 346: ......
Page 706: ...CHAPTER 36 Management 664 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Page 718: ...EQBD 000026 Ed 00 ...