CHAPTER 5. IPSEC
268
© SAMSUNG Electronics Co., Ltd.
6.
Display the IKE policies.
Router# show crypto ike policy all
Policy Peer Mode Transform
NW2 172.16.0.2 Main P1 pre-g1-3des-sha1
7.
Display the IKE policies in detail.
Router# show crypto ike policy all detail
Policy name NW2, Local addr 172.16.0.1, Peer addr 172.16.0.2
Main mode, Response and Initiate, PFS is not enabled, Shared
Key is *****
Local ident 172.16.0.1(ip-address), Remote Ident
172.16.0.2(ip-address)
Proposal of priority 1
Encryption algorithm: 3des
Hash Algorithm: sha1
Authentication Mode: pre-shared-key
DH Group: group1
Lifetime in seconds: 86400
Lifetime in kilobytes: unlimited
8.
Configure IPSec tunnel to the remote host.
Router/configure/crypto# ipsec policy NW2 172.16.0.2
Router/configure/crypto/ipsec/policy NW2 172.16.0.2# match
address 10.0.1.0 24 10.0.2.0 24
Router/configure/crypto/ipsec/policy NW2 172.16.0.2#
proposal 1
Router/configure/crypto/ipsec/policy NW2 172.16.0.2/proposal
1# encryption-algorithm aes256-cbc
Router/configure/crypto/ipsec/policy NW2 172.16.0.2/proposal
1# exit
Router/configure/crypto/ipsec/policy NW2 172.16.0.2# exit
For IPSec only-when you create an outbound tunnel, an inbound tunnel is
automatically created. The inbound tunnel applies the name that you
provide for the outbound tunnel and adds the prefix ‘IN’ to the name.
Содержание Ubigate iBG2016
Страница 1: ......
Страница 16: ...INTRODUCTION XIV SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 34: ......
Страница 42: ...CHAPTER 1 Basic Configuration 8 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 62: ...CHAPTER 4 System Logging 28 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 70: ......
Страница 108: ......
Страница 126: ...CHAPTER 1 Layer 2 Switching 90 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 140: ...CHAPTER 4 RIP 104 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 156: ...CHAPTER 6 BGP 120 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 176: ...CHAPTER 7 MultiCast Protocols 140 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 180: ...CHAPTER 8 VRRP 144 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 264: ...CHAPTER 10 QoS 228 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 270: ...CHAPTER 11 VLAN forwarding with QoS 234 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 272: ......
Страница 278: ...CHAPTER 1 Authentication Authorization Accounting 228 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 298: ...CHAPTER 3 Firewall NAT 248 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 356: ...CHAPTER 5 IPSEC 306 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 358: ......
Страница 390: ...CHAPTER 2 VoIP Gateway Management 336 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 514: ...CHAPTER 4 H 323 Gateway Management 460 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 670: ...CHAPTER 8 Routing and Digit Manipulation 616 SAMSUNG Electronics Co Ltd This page is intentionally left blank ...
Страница 744: ...EQBD 000071 Ed 00 ...