Configuring IPSec VPN
Summary of configuration steps
This section provides a list of the commands required to configure a VPN. For a step-by-step
description of the VPN procedures, see
Note:
You must configure VPN in the order shown in the summary. Parameters
Note:
appearing in bold are mandatory.
ISAKMP policy –
●
description
●
encryption
●
hash
●
group
●
lifetime
●
IPSEC transform-set –
●
set pfs
●
set security-association lifetime seconds
●
set security-association lifetime kilobytes
●
mode (tunnel/transport)
●
ISAKMP peer –
●
description
●
isakmp-policy
●
pre-shared-key
●
initiate mode aggressive
●
self-identity
●
keepalive
●
keepalive-track
●
continuous-channel
●
(Optional) ISAKMP peer group –
●
description
●
set peer
●
364 Administration for the Avaya G250 and Avaya G350 Media Gateways
Configuring a site-to-site IPSec VPN
crypto isakmp policy
crypto ipsec transform-set
crypto isakmp peer
crypto isakmp peer-group
on page 366.