EasyManua.ls Logo

HPE FlexNetwork 5510 HI Series

HPE FlexNetwork 5510 HI Series
551 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
323
[SwitchA-ikev2-profile-profile1] certificate domain domain1
# Set the local ID to FQDN name www.switcha.com.
[SwitchA-ikev2-profile-profile1] identity local fqdn www.switcha.com
# Specify the peer ID that the IKEv2 profile matches. The peer ID is FQDN name
www.routerb.com.
[SwitchA-ikev2-profile-profile1] match remote identity fqdn www.routerb.com
[SwitchA-ikev2-profile-profile1] quit
# Create an IKEv2 proposal named 10.
[SwitchA] ikev2 proposal 10
# Specify the integrity protection algorithm as HMAC-MD5.
[SwitchA-ikev2-proposal-10] integrity md5
# Specify the encryption algorithm as 3DES-CBC.
[SwitchA-ikev2-proposal-10] encryption 3des-cbc
# Specify the DH group as Group 1.
[SwitchA-ikev2-proposal-10] dh group1
# Specify the PRF algorithm as HMAC-MD5.
[SwitchA-ikev2-proposal-10] prf md5
[SwitchA-ikev2-proposal-10] quit
# Create an IKEv2 policy named 1.
[SwitchA] ikev2 policy 1
# Specify IKEv2 proposal 10 for the IKEv2 policy.
[SwitchA-ikev2-policy-1] proposal 10
[SwitchA-ikev2-policy-1] quit
# Create an IKE-based IPsec policy entry. Specify the policy name as map1 and set the
sequence number to 10.
[SwitchA] ipsec policy map1 10 isakmp
# Specify remote IP address 2.2.2.2 for the IPsec tunnel.
[SwitchA-ipsec-policy-isakmp-map1-10] remote-address 2.2.2.2
# Specify IPsec transform set tran1 for the IPsec policy.
[SwitchA-ipsec-policy-isakmp-map1-10] transform-set tran1
# Specify ACL 3101 to identify the traffic to be protected.
[SwitchA-ipsec-policy-isakmp-map1-10] security acl 3101
# Specify IKEv2 profile profile1 for the IPsec policy.
[SwitchA-ipsec-policy-isakmp-map1-10] ikev2-profile profile1
[SwitchA-ipsec-policy-isakmp-map1-10] quit
# Apply IPsec policy map1 to VLAN-interface 1.
[SwitchA] interface vlan-interface 1
[SwitchA-Vlan-interface1] ipsec apply policy map1
[SwitchA-Vlan-interface1] quit
2. Configure Switch B:
# Assign an IP address to VLAN-interface 1.
<SwitchB> system-view
[SwitchB] interface Vlan-interface1
[SwitchB-Vlan-interface1] ip address 2.2.2.2 255.255.255.0
[SwitchB-Vlan-interface1] quit
# Configure IPv4 advanced ACL 3101 to identify traffic between Switch A and Switch B.
[SwitchB] acl advanced 3101

Table of Contents

Other manuals for HPE FlexNetwork 5510 HI Series

Preview: Configuration Guide
Configuration Guide572 pages
Preview: Fundamentals Configuration Guide
Fundamentals Configuration Guide209 pages
Preview: Layer 3 - Ip Routing Configuration Guide
Layer 3 - Ip Routing Configuration Guide486 pages
Preview: Network Management And Monitoring Configuration Guide
Network Management And Monitoring Configuration Guide331 pages
Preview: Macsec Configuration Guide
Macsec Configuration Guide27 pages
Preview: Acl And Qos Configuration Guide
Acl And Qos Configuration Guide114 pages
Preview: Mpls Configuration Guide
Mpls Configuration Guide505 pages
Preview: Openflow Configuration Guide
Openflow Configuration Guide39 pages

Related product manuals