ESR series service routers.ESR-Series. User manual
Step Description Command Keys
26 Specify IPsec authentication algorithm
(optional).
esr(config-ipsec-proposal)#
authentication algorithm
<ALGORITHM>
<ALGORITHM> –
authentication algorithm, takes
values of: md5, sha1, sha2-256,
sha2‑384, sha2-512.
Default value: sha1.
27 Specify IPsec encryption algorithm
(route).
esr(config-ipsec-proposal)#
encryption algorithm
<ALGORITHM>
<ALGORITHM> – encryption
protocol, takes the following
values: des, 3des, blowfish128,
blowfish192, blowfish256,
aes128, aes192, aes256,
aes128ctr, aes192ctr,
aes256ctr, camellia128,
camellia192, camellia256.
Default value: 3des.
28 Specify encapsulation protocol for
IPsec (optional).
esr(config-ipsec-proposal)#
protocol <PROTOCOL>
<PROTOCOL> – encapsulation
protocol, takes the following
values:
Default value: esp.
29 Create an IPsec policy and switch to its
configuration mode.
esr(config)# security ipsec policy
<NAME>
<NAME> – IPsec policy name,
set by the string of up to 31
characters.
30 Bind IPsec profile to IPsec policy. esr(config-ipsec-policy)# proposal
<NAME>
<NAME> – IPsec protocol
profile name, set by the string
of up to 31 characters.
31 Specify the lifetime of IPsec tunnel
(optional).
esr(config-ipsec- policy)# lifetime
{ seconds <SEC> |
packets <PACKETS> | kilobytes
<KB> }
<SEC> – IPsec tunnel lifetime
after which the re-approval is
carried out. Takes values in the
range of [1140..86400]
seconds.
<PACKETS> – number of
packets after transmitting of
which the IPsec tunnel re-
approval is carried out. Takes
values in the range of
[4..86400].
<KB> – traffic amount after
transmitting of which the IPsec
tunnel re-approval is carried
out. Takes values in the range
of [4..86400] seconds.
Default value: 28800 seconds.
To Next Page
Loading...