ADTRAN AOS Version R10.1.0 Command Reference Manual page 3939

Adtran operating system (aos)

Hide thumbs

3448

3449

3450

3451

3452

3453

3454

3455

3456

3457

3458

3459

3460

3461

3462

3463

3464

3465

3466

3467

3468

3469

3470

3471

3472

3473

3474

3475

3476

3477

3478

3479

3480

3481

3482

3483

3484

3485

3486

3487

3488

3489

3490

3491

3492

3493

3494

3495

3496

3497

3498

3499

3500

3501

3502

3503

3504

3505

3506

3507

3508

3509

3510

3511

3512

3513

3514

3515

3516

3517

3518

3519

3520

3521

3522

3523

3524

3525

3526

3527

3528

3529

3530

3531

3532

3533

3534

3535

3536

3537

3538

3539

3540

3541

3542

3543

3544

3545

3546

3547

3548

3549

3550

3551

3552

3553

3554

3555

3556

3557

3558

3559

3560

3561

3562

3563

3564

3565

3566

3567

3568

3569

3570

3571

3572

3573

3574

3575

3576

3577

3578

3579

3580

3581

3582

3583

3584

3585

3586

3587

3588

3589

3590

3591

3592

3593

3594

3595

3596

3597

3598

3599

3600

3601

3602

3603

3604

3605

3606

3607

3608

3609

3610

3611

3612

3613

3614

3615

3616

3617

3618

3619

3620

3621

3622

3623

3624

3625

3626

3627

3628

3629

3630

3631

3632

3633

3634

3635

3636

3637

3638

3639

3640

3641

3642

3643

3644

3645

3646

3647

3648

3649

3650

3651

3652

3653

3654

3655

3656

3657

3658

3659

3660

3661

3662

3663

3664

3665

3666

3667

3668

3669

3670

3671

3672

3673

3674

3675

3676

3677

3678

3679

3680

3681

3682

3683

3684

3685

3686

3687

3688

3689

3690

3691

3692

3693

3694

3695

3696

3697

3698

3699

3700

3701

3702

3703

3704

3705

3706

3707

3708

3709

3710

3711

3712

3713

3714

3715

3716

3717

3718

3719

3720

3721

3722

3723

3724

3725

3726

3727

3728

3729

3730

3731

3732

3733

3734

3735

3736

3737

3738

3739

3740

3741

3742

3743

3744

3745

3746

3747

3748

3749

3750

3751

3752

3753

3754

3755

3756

3757

3758

3759

3760

3761

3762

3763

3764

3765

3766

3767

3768

3769

3770

3771

3772

3773

3774

3775

3776

3777

3778

3779

3780

3781

3782

3783

3784

3785

3786

3787

3788

3789

3790

3791

3792

3793

3794

3795

3796

3797

3798

3799

3800

3801

3802

3803

3804

3805

3806

3807

3808

3809

3810

3811

3812

3813

3814

3815

3816

3817

3818

3819

3820

3821

3822

3823

3824

3825

3826

3827

3828

3829

3830

3831

3832

3833

3834

3835

3836

3837

3838

3839

3840

3841

3842

3843

3844

3845

3846

3847

3848

3849

3850

3851

3852

3853

3854

3855

3856

3857

3858

3859

3860

3861

3862

3863

3864

3865

3866

3867

3868

3869

3870

3871

3872

3873

3874

3875

3876

3877

3878

3879

3880

3881

3882

3883

3884

3885

3886

3887

3888

3889

3890

3891

3892

3893

3894

3895

3896

3897

3898

3899

3900

3901

3902

3903

3904

3905

3906

3907

3908

3909

3910

3911

3912

3913

3914

3915

3916

3917

3918

3919

3920

3921

3922

3923

3924

3925

3926

3927

3928

3929

3930

3931

3932

3933

3934

3935

3936

3937

3938

3939

3940

3941

3942

3943

3944

3945

3946

3947

3948

3949

3950

3951

3952

3953

3954

3955

3956

3957

3958

3959

3960

3961

3962

3963

3964

3965

3966

3967

3968

page of 3968

/ 3968
Contents
Table of Contents
Bookmarks

Table of Contents

Command Reference Guide

Refer to the following list for key length requirements.

Algorithm:

DES

3DES

AES-128-CBC

AES-192-CBC

AES-256-CBC

MD5

SHA1

Usage Examples

The following example configures an AOS product for virtual private network (VPN) using IPSec manual

keys. This example assumes that the AOS product has been configured with a wide area network (WAN)

IP address of 63.97.45.57 on interface ppp 1 and a local area network (LAN) IP address of 10.10.10.254

on interface ethernet 0/1. The peer private IP subnet is 10.10.20.0.

For more detailed information on VPN configuration, refer to the VPN configuration guide located on the

AOS Documentation CD provided with your unit.

Step 1:

Enter the Global Configuration mode (i.e., config terminal mode).

>enable

#configure terminal

Step 2:

Enable VPN support using the ip crypto command. This command allows crypto maps to be applied to

interfaces, and enables the Internet key exchange (IKE) server to listen for IKE negotiation sessions on

User Datagram Protocol (UDP) port 500.

(config)#ip crypto

Step 3:

Define the transform set. A transform set defines the encryption and/or authentication algorithms to be

used to secure the data transmitted over the VPN tunnel. Multiple transform sets may be defined in a

system. Once a transform set is defined, many different crypto maps within the system can reference it. In

this example, a transform set named highly_secure has been created. This transform set defines ESP

with authentication implemented using 3DES encryption and SHA1 authentication.

(config)#crypto ipsec transform-set highly_secure esp-3des esp-sha-hmac

(cfg-crypto-trans)#mode tunnel

60000CRG0-35E

Minimum key length required:

64 bits in length; 8 hexadecimal bytes

192 bits in length; 24 hexadecimal bytes

128 bits in length; 16 hexadecimal bytes

192 bits in length; 24 hexadecimal bytes

256 bits in length; 32 hexadecimal bytes

128 bits in length; 16 hexadecimal bytes

160 bits in length; 20 hexadecimal bytes

Crypto Map Manual Command Set

3939

Table of Contents

This manual is also suitable for:

Aos r10.1.0

ADTRAN AOS Version R10.1.0 Command Reference Manual page 3939

Related Manuals for ADTRAN AOS Version R10.1.0

Related Products for ADTRAN AOS Version R10.1.0

This manual is also suitable for:

Table of Contents