Avaya G430 Manual page 539
Administering branch gateway
Hide thumbs
Also See for G430:
- Installation and upgrades (155 pages) ,
- Deploying and upgrading (144 pages) ,
- Quick start for hardware (31 pages)
Table of Contents
Advertisement
!
! Define the default gateway to be on the public subnet
!
ip default-gateway 100.0.0.1
!
! Define the DNS name server
! that is accessible without VPN.
!
ip domain name-server-list 1
name-server 1 123.124.125.126
exit
!
! Define the IKE Entity
!
crypto isakmp policy 1
encryption aes
hash sha
group 2
authentication pre-share
exit
!
! Define the remote peer as FQDN (DNS Name)
!
crypto isakmp peer fqdn main-vpn.avaya.com
pre-shared-key <key1>
isakmp-policy 1
exit
!
! Define the IPSEC Entity
!
crypto ipsec transform-set ts1 esp-3des esp-sha-hmac
exit
!
! Define the VPN Tunnel
!
crypto map 1
set peer main-vpn.avaya.com
set transform-set ts1
exit
!
! Define the crypto list for the public interface
!
ip crypto-list 901
local-address "Fast Ethernet 10/3.0"
!
! ip-rule 5 allows un-encrypted traffic for DNS
!
ip-rule 5
source-ip
destination-ip 123.124.125.126
no protect
exit
ip-rule 10
source-ip
destination-ip any
protect crypto map 1
exit
ip-rule 20
source-ip
destination-ip any
protect crypto map 1
exit
exit
!
Administering Avaya G430 Branch Gateway
any
10.0.10.0 0.0.0.255
10.0.20.0 0.0.0.255
IPSec VPN
October 2013
539
Hide quick links:
Advertisement
Table of Contents
