Siemens RUGGEDCOM ROX II User Manual page 471

Hide thumbs Also See for RUGGEDCOM ROX II:

Table of Contents

RUGGEDCOM ROX II

CLI User Guide

For more information about configuring connection ends, refer to

Add subnet 192.168.60.0/24 for the right connection end. For more information, refer to

Section 12.8.10.3, "Adding an Address for a Private

Configure the left connection end for the IPsec tunnel with the following public IP address parameters:

For more information about configuring connection ends, refer to

Add subnet 192.168.50.0/24 for the left connection end. For more information, refer to

Section 12.8.10.3, "Adding an Address for a Private

Enable the IPsec tunnel. For more information, refer to

Verify the tunnel status and make sure the traffic between the two sites is encrypted:

View the IPsec tunnel status and look for a message that includes the connection name and the words

erouted; eroute owner:. For example:

000 "ipsec-12": 192.168.22.0/24===192.168.12.2<192.168.12.2>[C=CA, ST=Ontario, O=RuggedCom,

CN=router2, E=router2@example.com,+S=C]...192.168.12.1<192.168.12.1>[C=CA, ST=Ontari o,

O=RuggedCom, CN=router1, E=router1@example.com,+S=C]===192.168.11.0/24; erouted; eroute owner:

This indicates the IPsec tunnel is active.

For more information, refer to

Capture the packets using Tcpdump on one of the tunnel interfaces. Encrypted traffic will display an ESP

header. For more information about using the Tcpdump utility, refer to

from a Network

Final Configuration Example

The following configuration reflects the topology:

# show full-configuration

preshared-key 2.2.2.2 2.2.2.1

key SiEm3nsRu993dc@m

connection test

authenticate

connection-type tunnel

Example: Configuring an Encrypted VPN Tunnel

Section 12.8.4, "Viewing the IPsec Tunnel

Section 12.8.9, "Configuring the

Section 12.8.9, "Configuring the

Section 12.8.2, "Configuring IPsec

Section 2.4.9, "Capturing Packets

Tunneling and VPNs

Show Quick Links

Chapters

Table of Contents