ESR series service routers.ESR-Series. User manual
Step Description Command Keys
23 Create IPsec profile. esr(config)# security ipsec
proposal <NAME>
<NAME> – IPsec protocol
profile name, set by the string
of up to 31 characters.
24 Specify IPsec authentication algorithm. esr(config-ipsec-proposal)#
authentication algorithm
<ALGORITHM>
<ALGORITHM> –
authentication algorithm, takes
values of: md5, sha1, sha2-256,
sha2‑384, sha2-512.
26 Specify IPsec encryption algorithm. esr(config-ipsec-proposal)#
encryption algorithm
<ALGORITHM>
<ALGORITHM> – encryption
protocol, takes the following
values: des, 3des, blowfish128,
blowfish192, blowfish256,
aes128, aes192, aes256,
aes128ctr, aes192ctr,
aes256ctr, camellia128,
camellia192, camellia256.
26 Specify protocol (optional). esr(config-ipsec-
proposal)#protocol <PROTOCOL>
<PROTOCOL> – encapsulation
protocol, takes the following
values:
27 Create an IPsec profile policy and
switch to its configuration mode.
esr(config)# security ipsec policy
<NAME>
<NAME> – IPsec policy name,
set by the string of up to 31
characters.
28 Bind the policy to profile. esr(config-ipsec-policy)# proposal
<NAME>
<NAME> – IPsec protocol
profile name, set by the string
of up to 31 characters.
29 Specify the lifetime of IPsec tunnel
(optional).
esr(config-ipsec-policy)# lifetime
{ seconds <SEC> |
packets <PACKETS> | kilobytes
<KB> }
<SEC> – IPsec tunnel lifetime
after which the re-approval is
carried out. Takes values in the
range of [1140..86400]
seconds.
<PACKETS> – number of
packets after transmitting of
which the IPsec tunnel re-
approval is carried out. Takes
values in the range of
[4..86400].
<KB> – traffic amount after
transmitting of which the IPsec
tunnel re-approval is carried
out. Takes values in the range
of [4..86400] seconds.
To Next Page
Loading...
Need help?
General
