Index
SC-240
Cisco IOS XR System Security Configuration Guide
prefragmentation
crypto ipsec pre-fragmentation command
SC-124
dependencies SC-99
overview SC-99
procedure
service-gre interfaces
SC-125
service-ipsec interfaces SC-124
preshared keys
See keys, preshared; keys, preshared using AAA
server
proxy command
SC-41
R
RADIUS
configuring
dead-server detection
SC-194
UDP ports SC-191
operation SC-183
radius-server dead-criteria time command SC-195
radius-server dead-criteria tries command SC-195
radius-server deadtime command SC-194
RAs (registration authorities)
See CAs
reverse-route command
crypto profiles
SC-109
RRI (reverse-route injection) SC-127
RFC 2408, ISAKMP SC-21
RFC 2409, The Internet Key Exchange SC-21
RRI (reverse-route injection)
overview
SC-100
procedure SC-127
reverse-route command SC-109, SC-127
show route command SC-127
RSA (Rivest, Shamir, and Adelman)
encrypted nonces
SC-22
keys
definition
SC-3
deleting SC-8
signatures SC-22
RSA (Rivest, Shamir, and Adelman) encrypted nonces
IKE policy parameter
SC-23
requirements SC-24, SC-25
RSA (Rivest, Shamir, and Adelman) keys
configuring, manually
SC-44
generating SC-44
peer configuration SC-46
RSA (Rivest, Shamir, and Adelman) signatures
IKE configuration
SC-25
IKE policy parameter SC-23
requirements SC-24
S
SA (security association) for IPSec VPN SPA
idle timers
crypto ipsec security-association idle-time
command
SC-121
overview SC-99
procedure, each crypto profile SC-122
procedure, globally SC-121
lifetimes SC-121
SAM (Software Authentication Manager)
description
SC-225
SAs (security associations)
lifetimes
configuring
SC-35
global values, configuring SC-96
how they work SC-97
IKE policy parameter SC-23
limit overview SC-30
resource limit configuration SC-52
self-identity command SC-59
send-lifetime command SC-85
server-private command SC-197, SC-201
To Next Page
Loading...
