Motorola RFS Series Reference Manual page 312
Wireless lan switches wing cli reference guide
Hide thumbs
Also See for RFS Series:
- Reference manual (948 pages) ,
- System reference manual (590 pages) ,
- Reference manual (506 pages)
Table of Contents
Advertisement
5-36
Motorola RF Switch CLI Reference Guide
RFSwitch(config-crypto-map)#set peer 15.1.1.20
RFSwitch(config-crypto-map)#match address 150
RFSwitch(config-crypto-map)#set transformset TFSET
RFSwitch(config-crypto-map)#set security-association
lifetime seconds 3600
f.Associate the crypto map with a VLAN interface.
RFSwitch(config)#interface vlan1
RFSwitch(config-if)#ip address 11.1.1.10/24
RFSwitch(config-if)#crypto map THIRDMAP
RFSwitch(config-if)#interface vlan2100
RFSwitch(config-if)#ip address 12.1.1.10/24
RFSwitch(config-if)#ip route 0.0.0.0/0 11.1.1.2
2. Configuration required on switch 2:
a.Create an extended ACL. This defines the tunnel used by the traffic.
RFSwitch(config)#access-list 155permit ip 13.1.1.0/24
12.1.1.0/24 rule-precedence 1
b.Create and configure the ISAKMP parameters.
RFSwitch(config)#crypto isakmp keepalive 10
RFSwitch(config)#crypto isakmp key SYMBOLAD address
11.1.1.10
RFSwitch(config)#crypto ipsec security-association lifetime
kilobytes 4608000
c.Create and configure ISAKMP policy.
RFSwitch(config)#crypto isakmp policy 100
RFSwitch(config-crypto-isakmp)#encryption aes
RFSwitch(config-crypto-isakmp)#hash sha
RFSwitch(config-crypto-isakmp)#authentication pre-share
RFSwitch(config-crypto-isakmp)#group 5
RFSwitch(config-crypto-isakmp)#lifetime 9496
d.Create and configure IPSec an transform set.
RFSwitch(config)#crypto ipsec transform-set TFSET ah-sha-
hmac esp-aes esp-sha-hmac
RFSwitch(config-crypto-ipsec)#mode tunnel
e.Create and configure a crypto map.
RFSwitch(config)#crypto map THIRDMAP 435 isakmp
RFSwitch(config-crypto-map)#set peer 11.1.1.10
RFSwitch(config-crypto-map)#match address 150
Hide quick links:
Advertisement
Table of Contents
