Configuring IPsec Tunnel Between OmniAccess 5740 USG and VPN Firewall Brick
Except on the first page, right running head:
Heading1 or Heading1NewPage text (automatic)
25
Alcatel-Lucent
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
Match-list rule configured for selecting the local and remote network, which
need to communicate:
match-list m1
1 ip host 192.168.60.18 host 10.91.10.2
!
IKE key created for the remote peer:
crypto ike key Ty#$cH peer 203.124.152.50
IKE policy created for defining the proposal set:
crypto ike policy ALU1
proposal md5-3des md5-des sha1-des sha1-3des
pfs group2
ipsec security-association lifetime seconds 28800
lifetime seconds 3600
! Policy in Use (by 1 cryptomap/s)
Transform-set created for defining the proposal to be used for encryption:
crypto ipsec transform-set myset esp-md5-3des
! Transform-Set in Use (by 1 cryptomap/s)
Crypto map created pointing to the remote peer:
crypto map ALU ipsec-ike ALU1
peer 203.124.152.50
match m1
transform-set myset
pfs group2
! Applied to : GigabitEthernet3/1
!
Crypto map applied on the interface pointing to the external network:
interface GigabitEthernet3/1
crypto map ALU
top
!
line vty 4
transport input none
!
line con 0
!
end
To Next Page
Loading...
