Virtual PrivateNetworks(VPN) IPsec
IX20 User Guide
497
b. Set the XAUTH client username:
(config vpn ipsec tunnel ipsec_example)> xauth_client username name
(config vpn ipsec tunnel ipsec_example)>
c. Set the XAUTH client password:
(config vpn ipsec tunnel ipsec_example)> xauth_client password pwd
(config vpn ipsec tunnel ipsec_example)>
12. (Optional) Enable MODECFGclient functionality:
MODECFGclient functionality configures the device to receiveconfiguration information, such
as the private IPaddress, from the remote peer.
a. Enable MODECFGclient functionality:
(config vpn ipsec tunnel ipsec_example)> modecfg_client enable true
(config vpn ipsec tunnel ipsec_example)>
13. Configure the local endpoint:
a. Set the method for determining the local network interface:
(config vpn ipsec tunnel ipsec_example)> local type value
(config vpn ipsec tunnel ipsec_example)>
where value is either:
n
defaultroute: Uses the same network interface as the default route.
n
interface: Select the Interface to be used asthe local endpoint.
b. Set the IDtype:
(config vpn ipsec tunnel ipsec_example)> local id type value
(config vpn ipsec tunnel ipsec_example)>
where value is one of:
n
auto: The IDwill be automatically determined from the value of the tunnels
endpoints.
n
raw: Enter an ID and have it passed unmodified to the underlying IPsec stack.
Set the unmodified IDthat will be passed:
(config vpn ipsec tunnel ipsec_example)> local id type raw_id id
(config vpn ipsec tunnel ipsec_example)>
n
any: Any IDwill be accepted.
n
ipv4: The IDwill be interpreted as an IPv4 address and sent as an ID_IPV4_ADDR
IKEidentity.
Set an IPv4 formatted ID. Thiscan be a fully-qualified domain name or an IPv4
address.
To Next Page
Loading...