3Com MSR 50 Series Configuration Manual page 1911

IKE Configuration Example 1911
[RouterA] acl number 3101 match-order auto
[RouterA-acl-adv-3101] rule permit ip source any destination any
[RouterA-acl-adv-3101] quit
# Configure an IP address pool.
[RouterA] ip pool 1 10.0.0.2 10.0.0.10
# Configure an IKE peer.
[RouterA] ike peer peer
[RouterA-ike-peer-peer] exchange-mode aggressive
[RouterA-ike-peer-peer] pre-shared-key abc
[RouterA-ike-peer-peer] id-type name
[RouterA-ike-peer-peer] remote-name routerb
[RouterA-ike-peer-peer] quit
# Create an IPSec proposal named prop.
[RouterA] ipsec proposal prop
[RouterA-ipsec-proposal-prop] encapsulation-mode tunnel
[RouterA-ipsec-proposal-prop] transform esp
[RouterA-ipsec-proposal-prop] esp encryption-algorithm des
[RouterA-ipsec-proposal-prop] esp authentication-algorithm sha1
[RouterA-ipsec-proposal-prop] quit
# Create an IPSec policy named policy, specifying to set up SAs through IKE
negotiation.
[RouterA] ipsec policy policy 10 isakmp
# Configure the IPSec policy to reference the IKE peer.
[RouterA-ipsec-policy-isakmp-policy-10] ike-peer peer
# Configure the IPSec policy to reference ACL 3101.
[RouterA-ipsec-policy-isakmp-policy-10] security acl 3101
# Configure the IPSec policy to reference IPSec proposal prop.
[RouterA-ipsec-policy-isakmp-policy-10] proposal prop
[RouterA-ipsec-policy-isakmp-policy-10] quit
# Configure the IP address of interface Serial 2/0.
[RouterA] interface serial 2/0
[RouterA-Serial2/0] ip address 10.0.0.1 255.255.0.0
# Apply the IPSec policy to interface Serial 2/0.
[RouterA-Serial2/0] ipsec policy policy
[RouterA-Serial2/0] remote address pool 1
2 Configure Router B
# Specify a name for the local security gateway.