ESR series service routers.ESR-Series. User manual
•
•
Step Description Command Keys
29 Set access profile for XAUTH
parameters (only for server).
esr(config-ike-gw)# xauth
access-profile <NAME>
<NAME> – access profile name,
set by the string of up to 31
characters.
30 Set access profile and login for
XAUTH parameters (only for client).
esr(config-ike-gw)# xauth
access-profile <NAME> client
<LOGIN>
<NAME> – access profile name,
set by the string of up to 31
characters;
<LOGIN> – login for client, set by
the string of up to 31 characters.
31 Define a dedicated IP termination
interface for building IPsec VPN (only
for client).
esr(config-ike-gw)# assign-
interface loopback <INDEX>
<INDEX> – interface index, takes
values of [1..65535].
32 Create IPsec profile. esr(config)# security ipsec
proposal <NAME>
<NAME> – IPsec protocol profile
name, set by the string of up to
31 characters.
33 Specify IPsec authentication
algorithm (optional).
esr(config-ipsec-proposal)#
authentication algorithm
<ALGORITHM>
<ALGORITHM> – authentication
algorithm, takes values of: md5,
sha1, sha2-256, sha2‑384,
sha2-512.
Default value: sha1
34 Specify IPsec encryption algorithm
(optional).
esr(config-ipsec-proposal)#
encryption algorithm
<ALGORITHM>
<ALGORITHM> – encryption
protocol, takes the following
values: des, 3des, blowfish128,
blowfish192, blowfish256,
aes128, aes192, aes256,
aes128ctr, aes192ctr, aes256ctr,
camellia128, camellia192,
camellia256.
Default value: 3des
35 Specify protocol (optional). esr(config-ipsec-
proposal)#protocol
<PROTOCOL>
<PROTOCOL> – encapsulation
protocol, takes the following
values:
ah – this protocol
performs only traffic
authentication, data
encryption is not
performed;
esp – this protocol
authenticates and
encrypts traffic.
Default value: esp
To Next Page
Loading...