Networks1> show crypto ipsec sa all detail
Example 2: Joining Two Private Networks with an IP Security
Tunnel
The following example demonstrates how to form an IP security tunnel to join two private
networks: 10.0.1.0/24 and 10.0.2.0/24. The security requirements are as follows:
Example
• Phase 1: 3DES with SHA1
• Phase 2: IPSec ESP with AES (256-bit) and HMAC-SHA1
Figure 23: Tunnel Mode Between Two Security Gateways - Single Proposals
Step 1: Configure a WAN bundle of network type untrusted
Networks1/configure/interface/bundle wan1> link t1 1
Networks1/configure/interface/bundle wan1> encapsulation ppp
Networks1/configure/interface/bundle wan1> ip address 172.16.0.1 24
Networks1/configure/interface/bundle wan1> crypto untrusted
Networks1/configure/interface/bundle wan1> exit
Avaya Secure Router 1000 Series Configuration Guide
Example 2: Joining Two Private Networks with an IP Security Tunnel
December 2010
143