Note:
You can configure up to 100 crypto maps.
Procedure
1. Use the crypto map command, followed by an index number from 1 to 50, to enter
the context of a crypto map and to create the crypto map if it does not exist.
For example:
Gxxx-001# crypto map 1
Gxxx-001(config-crypto:1)#
2. Use the description command to enter a description for the crypto map.
For example:
Gxxx-001(config-crypto:1)# description “vpn lincroft branch”
Done!
3. Do one of the following commands:
• Specify the remote peer, using the set peer command. For example:
Gxxx-001(config-crypto:1)# set peer 149.49.60.60
Done!
• Specify a peer-group, using the set peer-group command. For example:
Gxxx-001(config-crypto:1)# set peer-group NY-VPN-group
Done!
Important:
Specify either set peer or set peer-group, but not both.
4. Specify the specific transform-set to which this crypto map points, using the set
transform-set command.
Important:
set transform-set is a mandatory command.
For example:
Gxxx-001(config-crypto:1)# set transform-set ts1
Done!
5. Set the static DSCP value in the DS field of the tunneled packet by using the set
dscp command, followed by a value from 0 to 63.
The default setting is no set dscp that specifies that the DSCP is copied from
the DS field of the original packet.
For example:
Gxxx-001(config-crypto:1)# set dscp 38
Done!
IPSec VPN
494 Administering Avaya G430 Branch Gateway October 2013
Comments? infodev@avaya.com
To Next Page
Loading...
