EasyManua.ls Logo

Alcatel-Lucent 7750 SR - Page 1426

Alcatel-Lucent 7750 SR
1948 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
VPRN Service Configuration Commands
Page 1426 7750 SR OS Services Guide
Parameters ip-address — IP address of the local end of the tunnel.
delivery-service service-idThe ID of the IES or VPRN (front-door) delivery service of this
tunnel. Use this service-id to find the VPRN used for delivery.
Values service-id: 1 — 2147483648
svc-name: Specifies an existing service name up to 64 characters in length.
manual-keying
Syntax [no] manual-keying
Context config>service>vprn>ipsec-interface>sap>tunnel
Description This command configures Security Association (SA) for manual keying. When enabled, the
command specifies whether this SA entry is created manually by the user or dynamically by the IPsec
sub-system.
Default none
security-association
Syntax security-association security-entry-id authentication-key authentication-key encryption-
key encryption-key spi spi transform transform-id direction {inbound | outbound}
no security-association security-entry-id direction {inbound | outbound}
Context config>service>vprn>ipsec-interface>sap>tunnel>manual-keying
Description This command configures the information required for manual keying SA creation.
Default none
Parameters security-entry-id — Specifies the ID of an SA entry.
Values 1 — 16
encryption-key encryption-keyspecifies the key used for the encryption algorithm.
Values none or 0x0..0xFFFFFFFF...(max 64 hex nibbles)
authentication-key authentication-key
Values none or 0x0..0xFFFFFFFF...(max 40 hex nibbles)
spi spiSpecifies the SPI (Security Parameter Index) used to look up the instruction to verify and
decrypt the incoming IPSec packets when the direction is inbound. When the direction is
outbound, the SPI that will be used in the encoding of the outgoing packets. The remote node can
use this SPI to lookup the instruction to verify and decrypt the packet.
Values 256 — 16383
transform transform-idspecifies the transform entry that will be used by this SA entry. This
object should be specified for all the entries created which are manual SAs. If the value is
dynamic, then this value is irrelevant and will be zero.

Table of Contents

Other manuals for Alcatel-Lucent 7750 SR

Preview: Brochure
Brochure16 pages

Related product manuals