Table of Contents
Advertisement
CHAPTER 5
Configuring IPSec
Overview
IPSec Terms and Acronyms
Copyright © 2010, Juniper Networks, Inc.
This chapter describes Internet Protocol Security (IPSec) capabilities of the ERX routers.
It contains the following sections:
Overview on page 119
Platform Considerations on page 121
References on page 121
IPSec Concepts on page 122
IKE Overview on page 134
Configuration Tasks on page 138
Configuration Examples on page 152
Monitoring IPSec on page 160
The IP security functionality covered in this chapter includes the following major areas:
Encapsulating protocols, including authentication (AH) and Encapsulating Security
Payload (ESP), to provide security on specified packets
The Internet Security Association and Key Management Protocol/Internet Key Exchange
(ISAKMP/IKE) protocol suite to provide automatic negotiation of security associations,
including session keys
Table 8 on page 119 describes terms and abbreviations that are used in this discussion
of IPSec.
Table 8: IPSec Terms and Abbreviations
Term or
Abbreviation
Description
3DES
Triple DES encryption/decryption algorithm
AH
Authentication header. Provides authentication of the sender and of data
integrity.
119
Advertisement
Table of Contents
Need help?
Do you have a question about the JUNOSE SOFTWARE FOR E SERIES 11.3.X - IP SERVICES CONFIGURATION GUIDE 2010-10-01 and is the answer not in the manual?
Questions and answers