EasyManua.ls Logo

Alcatel-Lucent 7750 SR - Page 1422

Alcatel-Lucent 7750 SR
1948 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
VPRN Service Configuration Commands
Page 1422 7750 SR OS Services Guide
local-ip
Syntax local-ip {ip-prefix/prefix-length | ip-prefix netmask | any}
Context config>service>vprn>ipsec>sec-plcy>entry
Description This command configures the local (from the VPN ) IP prefix/mask for the policy parameter entry.
Only one entry is necessary to describe a potential flow. The local-ip and remote-ip commands can
be defined only once. The system will evaluate the local IP as the source IP when traffic is examined
in the direction of VPN to the tunnel and as the destination IP when traffic flows from the tunnel to
the VPN. The remote IP will be evaluated as the source IP when traffic flows from the tunnel to the
VPN when traffic flows from the VPN to the tunnel.
Parameters ip-prefix — The destination address of the aggregate route in dotted decimal notation.
Values a.b.c.d (host bits must be 0)
prefix-length 1 — 32
netmaskThe subnet mask in dotted decimal notation.
any — keyword to specify that it can be any address.
remote-ip
Syntax remote-ip ip-prefix/prefix-length | ip-prefix netmask | any}
Context config>service>vprn>ipsec>sec-plcy>entry
Description This command configures the remote (from the tunnel) IP prefix/mask for the policy parameter entry.
Only one entry is necessary to describe a potential flow. The local-ip and remote-ip commands can
be defined only once. The system will evaluate the local IP as the source IP when traffic is examined
in the direction of VPN to the tunnel and as the destination IP when traffic flows from the tunnel to
the VPN. The remote IP will be evaluated as the source IP when traffic flows from the tunnel to the
VPN when traffic flows from the VPN to the tunnel.
Parameters ip-prefix — The destination address of the aggregate route in dotted decimal notation.
Values a.b.c.d (host bits must be 0)
prefix-length 1 — 32
netmaskThe subnet mask in dotted decimal notation.
any — keyword to specify that it can be any address.
ipsec-interface
Syntax ipsec-interface ip-int-name [create]
no ipsec-interface ip-int-name
Context config>service>vprn
Description This command configures an IPSec interface.

Table of Contents

Other manuals for Alcatel-Lucent 7750 SR

Preview: Brochure
Brochure16 pages

Related product manuals