Huawei AR1200 series Configuration Manual page 347
Enterprise routers
Hide thumbs
Also See for AR1200 series:
- Configuration manual (342 pages) ,
- User configuration manual (232 pages) ,
- Hardware description (218 pages)
Table of Contents
Advertisement
Huawei AR1200 Series Enterprise Routers
Configuration Guide - VPN
Figure 5-7 Networking for Establishing an SA Using Efficient VPN in Client Mode
Remote
10.1.1.2/24
Configuration Roadmap
The configuration roadmap on RouterA is as follows:
1.
2.
3.
4.
5.
6.
The configuration roadmap on RouterB is as follows:
1.
2.
3.
4.
5.
6.
Procedure
Step 1 Configure RouterA.
1.
2.
3.
Issue 01 (2012-04-20)
RouterA
Eth1/0/0
60.1.1.1/24
PC A
Assign an IP address to an interface.
Configure a static route.
Configure the Efficient VPN policy in client mode.
Configure an address for the peer end in IKE negotiation.
Configure a pre-shared key.
Apply the Efficient VPN policy to the interface.
Assign an IP address to an interface.
Configure a static route.
Configure the resource attributes to be allocated.
Configure the IKE proposal and IKE peer.
Configure the IPSec proposal, template policy, and policy group.
Apply the policy group to the interface.
Assign an IP address to the interface on RouterA.
<Huawei> system-view
[Huawei] interface ethernet 1/0/0
[Huawei-Ethernet1/0/0] ip address 60.1.1.1 255.255.255.0
[Huawei-Ethernet1/0/0] quit
Configure a static route to the remote peer on RouterA. This example assumes that the next
hop address in the route to RouterB is 60.1.1.2.
[Huawei] ip route-static 10.1.2.0 255.255.255.0 60.1.1.2
Configure the Efficient VPN policy in client mode.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Internet
IPSec Tunnel
5 IPSec Configuration
RouterB
Server
Eth1/0/0
60.1.2.1/24
10.1.2.2/24
PC B
336
Hide quick links:
Advertisement
Table of Contents
