IP Security - Virtual Private Network
Left running head:
Chapter name (automatic)
862
Beta Beta
OmniAccess 5740 Unified Services Gateway CLI Configuration Guide
Alcatel-Lucent
IPSEC SCENARIOS ON OMNIACCESS 5740 USG
CONFIGURING IPSEC WITH ONLY A PRESHARED KEY
ALU(config)# show crypto
! No Key Set
!crypto ike policy default
! proposal md5-des
! ipsec security-association lifetime seconds 28800
! lifetime seconds 86400
! pfs group2
!crypto ipsec transform-set default
!esp-md5-des esp-sha1-des
! No Cryptomap Defined
!
ALU(config)# crypto ike key examplekey peer 10.0.0.1
ALU(config)# match-list m1
ALU(config-match-list-m1)# ip prefix 20.0.0.0/24 prefix
10.0.0.0/24
ALU(config-match-list-m1)# top
ALU(config)# crypto map demomap ipsec-ike default
ALU(config-crypto-map-demomap)# match m1
ALU(config-crypto-map-demomap)# peer 10.0.0.1
ALU(config-crypto-map-demomap)# top
ALU(config)# show crypto
crypto ike key examplekey peer 10.0.0.1
!crypto ike policy default
! proposal md5-des
! ipsec security-association lifetime seconds 28800
! lifetime seconds 86400
! pfs group2
!crypto ipsec transform-set default
! esp-md5-des esp-sha1-des
crypto map demomap ipsec-ike default
peer 10.0.0.1
match m1
transform-set default
pfs group2
! Not Applied to Any Interface
To Next Page
Loading...
