ESR series service routers.ESR-Series. User manual
•
•
Step Description Command Keys
10 Specify IKE encryption algorithm
(optional).
esr(config-ike-proposal)#
encryption algorithm
<ALGORITHM>
<ALGORITHM> – encryption
protocol, takes the following
values: des, 3des, blowfish128,
blowfish192, blowfish256,
aes128, aes192, aes256,
aes128ctr, aes192ctr,
aes256ctr, camellia128,
camellia192, camellia256.
Default value: 3des.
11 Define Diffie-Hellman group number
(optional).
esr(config-ike-proposal)# dh-
group <DH-GROUP>
<DH-GROUP> – Diffie-Hellman
group number, takes values of
[1, 2, 5, 14, 15, 16, 17, 18].
Default value: 1.
12 Specify IKE authentication mode
(optional)
esr(config-ike-proposal)#
authentication method <METHOD>
<METHOD> – key
authentication method. May
take the following values:
pre-shared-key –
authentication method
using pre-received
encryption keys;
rsa-public-key –
authentication method
using RSA certificate.
Default value: pre-shared-key.
13 Create an IKE policy and switch to its
configuration mode.
esr(config)# security ike policy
<NAME>
<NAME> – IKE policy name, set
by the string of up to 31
characters.
14 Specify the lifetime of IKE protocol
connection (optional).
esr(config-ike-proposal)# lifetime
seconds <SEC>
<SEC> – time interval, takes
values of [4..86400] seconds.
Default value: 3600.
15 Bind IKE profile to IKE policy. esr(config-ike-policy)# proposal
<NAME>
<NAME> – IKE protocol name,
set by the string of up to 31
characters.
16 Specify authentication key (mandatory
if pre-shared-key is selected as
authentication mode)
esr(config-ike-policy)# pre-
shared-key ascii-text<TEXT>
<TEXT> – string [1..64] ASCII
characters.
17 Create an IKE gateway and switch to its
configuration mode.
esr(config)# security ike gateway
<NAME>
<NAME> – IKE protocol
gateway name, set by the string
of up to 31 characters.
To Next Page
Loading...