Download
Share
Print this page
  1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Network Router
  5. ISR G2 Series
  6. Configuration manual

Cisco ISR G2 Series Configuration Manual

Verizon wireless dynamic mobile network routing lte
Hide thumbs Also See for ISR G2 Series:

Advertisement

Quick Links

Download this manual
Guide
Verizon Wireless Dynamic Mobile
Network Routing LTE - Cisco
Integrated Services Router (ISR G2)
and Connected Grid Router
Mobile Router Configuration Guide - Group Encrypted
Transport VPN – Primary Access 3G/4G
Revision 3.5
© 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information.
Page 1 of 16

Advertisement

loading

Related Manuals for Cisco ISR G2 Series

Summary of Contents for Cisco ISR G2 Series

  • Page 1 Integrated Services Router (ISR G2) and Connected Grid Router Mobile Router Configuration Guide - Group Encrypted Transport VPN – Primary Access 3G/4G Revision 3.5 © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 1 of 16...
  • Page 2 Key Management Protocol) SA lifetime is 24 hours, resulting in a very low RF usage because encryption is used. High availability ● © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 2 of 16...
  • Page 3 The Cisco 1941 Integrated Services Router is shown as the LTE/group member example. Many Cisco Integrated ® Services Routers (ISRs) that can run NEMO and Group Encrypted Transport VPN can be used, but a Cisco IOS © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information.
  • Page 4 Software Release 12.4(15)T and later Advanced IP or Cisco IOS Software Release 15.1(3)T (exact) Data and Security license are the minimum required with 3G. For ISR 1900, 2900. 3900 with LTE eHWIC or C819G-4G-V, the minimum IOS Software release is 15.3(3)M2.
  • Page 5 !### Define ISAKMP Policy and PSK ### crypto isakmp policy 10 encr aes authentication pre-share crypto isakmp key nemo address 0.0.0.0 0.0.0.0 no-xauth © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 5 of 16...
  • Page 6 2 !### Setup cellular interface for NEMO, disable idle timer, assign dialer- watch group for compulsive dial” ### interface Cellular0/0/0 © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 6 of 16...
  • Page 7 1 delay route-check initial 60 dialer watch-list 1 delay connect 1 route-map clear-df permit 10 set ip df 0 © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 7 of 16...
  • Page 8 C819G-4G-V is configured similarly to the ISR with LTE eHWIC with these caveats: The cell interface is “cellular 0” The line interface representing LTE is “line 3” ______________________________________________________________________ © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 8 of 16...
  • Page 9 1 profile NEMO match address ipv4 NEMO-GETVPN replay counter window-size 64 address ipv4 <KS1 address> <KS2 address> © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 9 of 16...
  • Page 10 ____________________________________________________________________________ Note: Crypto access control list (ACL) must be designed per customer traffic requirements. The ACL provided is an example only. © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 10 of 16...

  • Page 11: Group Information

    TEK POLICY for the current KS-Policy ACEs Downloaded: Tunnel0: IPsec SA: spi: 0xA5A7BF26(2779234086) transform: esp-aes esp-sha-hmac sa timing:remaining key lifetime (sec): (593) Anti-Replay : Disabled © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 11 of 16...
  • Page 12 0xA5A7BF26(2779234086) transform: esp-aes esp-sha-hmac , in use settings ={Tunnel, } conn id: 90, flow_id: Onboard VPN:90, sibling_flags 80000040, crypto map: NEMO-GETVPN © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 12 of 16...
  • Page 13 (sec): (520) Kilobyte Volume Rekey has been disabled IV size: 16 bytes replay detection support: N Status: ACTIVE outbound ah sas: © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 13 of 16...
  • Page 14 Kilobyte Volume Rekey has been disabled IV size: 16 bytes replay detection support: N Status: ACTIVE outbound ah sas: outbound pcp sas: protected vrf: (none) © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 14 of 16...
  • Page 15 N Status: ACTIVE outbound ah sas: outbound pcp sas: C1941-NEMO-LTE# PING FROM INSIDE SOURCE___________________________________________ C1941-NEMO-LTE#ping 10.245.1.1 source 10.21.65.129 repeat 100 © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 15 of 16...
  • Page 16 Packet sent with a source address of 10.21.65.129 !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!! Success rate is 100 percent (100/100), round-trip min/avg/max = 44/72/524 ms © 2014 Cisco and/or its affiliates. All rights reserved. This document is Cisco/Verizon Public Information. Page 16 of 16...

This manual is also suitable for:

Isr 1941Isr 2900 seriesIsr 1900 seriesIsr 3900 seriesCgr-2010