Configuring Ipsec Proposal - Nortel Secure 4134 Configuration
Security — configuration and management
Hide thumbs
Also See for Secure 4134:
- Installation manual (132 pages) ,
- Installation — hardware components (124 pages) ,
- Quick start manual (70 pages)
Table of Contents
Advertisement
132 IPsec VPN configuration
Procedure steps
Step
1
2
3
4
Table 57
Variable definitions
Variable
group1
group2
group5
Configuring IPsec proposal
Configure an IPsec proposal for an IPsec SA.
Before configuring a proposal, you must specify the IP stream on which to
apply IPsec using the match address command.
In case multiple proposals are configured, all of them are sent in the SA
payload in a logical OR manner in the order they are specified by the
proposal priority. The protocol value defaults to ESP if it is not explicitly
specified.
Procedure steps
Step
1
2
Copyright © 2007, Nortel Networks
.
Action
To enter the configuration mode, enter:
configure terminal
To specify crypto configuration for IPsec and IKE, enter:
crypto
To specify the IPsec policy to configure, enter:
ipsec policy <policy-name> <peer-gateway-ip>
To enable or disable anti-replay, enter:
pfs-group {group1 | group2 | group5}
Value
768-bit. RFC 2409
1024-bit. RFC 2409.
1536-bit. RFC 2409.
Action
To enter the configuration mode, enter:
configure terminal
To specify crypto configuration for IPsec and IKE, enter:
crypto
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600 01.02 Standard
10.0 3 August 2007
—End—
Advertisement
Table of Contents
