IP Security - Virtual Private Network
Left running head:
Chapter name (automatic)
820
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
Alcatel-Lucent
EXAMPLE
ALU(config)# crypto ike key top_secret1612 peer 10.10.1.2
ALU(config)# crypto ike key "!netsecret!" peer 202.54.30.100
ALU(config)# crypto ike key secret1234 peer mysmb.dyndns.org
ALU(config)# no crypto ike key top_secret1612 peer 10.10.1.2
IPSEC CONFIGURATION WITH X.509 CERTIFICATES
Public Key Infrastructure (PKI) will manage all the certificates for authentication in
the ALU domain. PKI provides a framework to verify the identity of each entity in a
given domain. It includes the requesting, issuing, signing and validating of the
public key certificate. The purpose of a public key infrastructure is to manage keys
and certificates. By managing keys and certificates through a PKI, an organization
establishes and maintains a trustworthy networking environment. A PKI enables
the use of encryption and digital signature services across a wide variety of
applications.
T
O GENERATE A RSA KEY PAIR
If the key modulus is greater than 2000, it can take few minutes to generate the
keys. [bg] will generate the keys in the background and free the CLI. Use "bg" to
generate the keys in the background and proceed with other configurations that
do not depend on the key generation.
E
XAMPLE
ALU(config)# crypto key generate rsa 1024 exampleKey
% The generated keys will be named examplekey
... starting key generation.
Please wait...
% Keys successfully generated.
Command (in CM) Description
crypto key generate rsa <512-
4096> <name> [bg]
This command generates an RSA key
pair
To Next Page
Loading...
Need help?
General
