EasyManuals Logo
Home>HPE>Network Router>FlexNetwork MSR Series

HPE FlexNetwork MSR Series Comware 5 Security Configuration Guide

HPE FlexNetwork MSR Series
547 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #203 background imageLoading...
Page #203 background image
190
[RouterA-ipsec-profile-atob] ike-peer atob
# Configure the IPsec profile to reference the IPsec transform set method1.
[RouterA-ipsec-profile-atob] transform-set method1
[RouterA-ipsec-profile-atob] quit
# Create tunnel interface Tunnel 1.
[RouterA] interface tunnel 1
# Assign IPv4 address 10.1.1.1/24 to tunnel interface Tunnel 1.
[RouterA–Tunnel1] ip address 10.1.1.1 24
# Set the tunnel mode of tunnel interface Tunnel 1 to IPsec over IPv4.
[RouterA–Tunnel1] tunnel-protocol ipsec ipv4
# Set the source interface of the tunnel to Serial 2/1 on Tunnel 1.
[RouterA–Tunnel1] source serial 2/1
# Set the tunnel destination address to 1.1.1.1, the source address of the remote peer.
[RouterA–Tunnel1] destination 1.1.1.1
# Apply IPsec profile atob to tunnel interface Tunnel 1.
[RouterA–Tunnel1] ipsec profile atob
[RouterA–Tunnel1] quit
# Configure a static route to Router B.
[RouterA] ip route-static 192.168.1.0 255.255.255.0 tunnel 1
2. Configure Router B:
# Assign an IP address to interface Serial 2/1.
<RouterB> system-view
[RouterB] interface serial 2/1
[RouterB-Serial2/1] ip address 1.1.1.1 24
[RouterB-Serial2/1] quit
# Name the local gateway routerb.
[RouterB] ike local-name routerb
# Configure an IKE peer named btoa. As the remote peer obtains the IP address automatically,
set the IKE negotiation mode to aggressive.
[RouterB] ike peer btoa
[RouterB-ike-peer-btoa] exchange-mode aggressive
[RouterB-ike-peer-btoa] pre-shared-key simple aabb
[RouterB-ike-peer-btoa] id-type name
[RouterB-ike-peer-btoa] remote-name routera
[RouterB-ike-peer-btoa] quit
# Create an IPsec transform set named method1. This IPsec transform set uses the default
settings: the security protocol of ESP, the encryption algorithm of DES, and the authentication
algorithm of MD5.
[RouterB] ipsec transform-set method1
[RouterB-ipsec-transform-set-method1] transform esp
[RouterB-ipsec-transform-set-method1] esp encryption-algorithm des
[RouterB-ipsec-transform-set-method1] esp authentication-algorithm md5
[RouterB-ipsec-transform-set-method1] quit
# Create an IPsec profile named btoa.
[RouterB] ipsec profile btoa
# Configure the IPsec profile to reference the IKE peer.
[RouterB-ipsec-profile-btoa] ike-peer btoa

Table of Contents

Other manuals for HPE FlexNetwork MSR Series

Preview: Configuration Guide
Configuration Guide861 pages
Preview: Comware 7 Layer 3 - Ip Services Configuration Guides
Comware 7 Layer 3 - Ip Services Configuration Guides554 pages
Preview: Guide
Guide213 pages
Preview: Command Reference
Command Reference120 pages
Preview: Comware 5 Layer 2 - Wan Access Configuration Guide
Comware 5 Layer 2 - Wan Access Configuration Guide420 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR Series and is the answer not in the manual?

HPE FlexNetwork MSR Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR Series
CategoryNetwork Router
LanguageEnglish

Related product manuals