Encryption Algorithms - Watchguard V10 Command Line Interface Manual
Firewall
Hide thumbs
Also See for V10:
- User manual (477 pages) ,
- Installation manual (97 pages) ,
- Supplementary manual (28 pages)
Table of Contents
Advertisement
CHAPTER 3: Configuration Mode Commands
Example
98
appliance. The number should be between 256 and
65535.
<md5|sha>
Use this argument to pick either MD5 or SHA
encryption algorithms.
<ascii_key | %hex_key>
This argument will contain the actual manual key
text, noted in ASCII or hexadecimal notation.
WG(config-ipsec)# action NY_IPSec -
tunnel \
NY_Gateway -auto no pfs_group
MAX_SECURITY \
ESP-3DES<ENTER>
# This command creates an auto-key IPSec action with
peer tunnel. The IP is NY_Gateway, no PFS, the first
proposal is MAX_SECURITY and the second is
ESP_3DES.
WG(config-ipsec)# action
remote_user_ipsec \
-tunnel * -auto pfs_group 1 ESP-3DES-MD5
\
ESP-DES-MD5<ENTER>
# This command creates a tunnel mode, auto-key IPSec
action for remote users. The peer tunnel IP is *
(ANY),PFS uses DH group 1, and there are two
proposals: ESP-3DES-MD5 and ESP-DES-MD5.
WG(config-ipsec)# action SJ_Man -tunnel
\
102.39.45.28 -man -esp 256 982 3des
mankey<ENTER>
# This command results in a tunnel-mode, manual-key
IPSec action with a peer tunnel IP address of
102.39.45.28. It uses ESP-3DES (local SPI is 256, peer
SPI is 982) and the key text is "mankey".
WatchGuard Vclass 5.1
Hide quick links:
Advertisement
Table of Contents
