2 configuration notes, 2 configuration notes -25, Configuration notes – Panasonic 8000 User Manual
Page 72: Figure 2-8
Attention! The text in this document has been recognized automatically. To view the original document, you can use the "Original mode".
Nortel Secure Router 8000 Series
Troubleshooting - VAS__________
2 IPSec and IKE troubleshooting
Figure 2-8 Networking diagram of setting up SA using an IPSec policy template
Router A
PC A
10.1.1.2
The networking environment is as follows:
•
Set up an IPSec tunnel between Router A and PC C. The IP address of PC C is uncertain.
•
Set up an SA using an IPSec policy template on Router A.
•
Provide security protection to the data flow between PC A (at 10.1.1.x) and PC C.
•
Specify the security protocol, the encryption algorithm, and the authentication algorithm.
2.4.2 Configuration notes
Item
Sub-item
Description
Configuring the
ACL
Configure the ACL
Not required.
Configuring the
IPSec proposal
Configure the name of
the IPSec proposal
The name is a string of 1 to 15 characters.
Configure the
encapsulation mode
Transport mode or tunnel mode.
Configure the security
protocols
AH, ESP, or AH-ESP.
Configure the
authentication
algorithm
MD5 or SHA-1.
Configure the
encryption algorithm
DES or 3DES.
Configuring the
local ID for IKE
Configure the local ID
for IKE
Configuration required only in aggressive
negotiation mode.
Configuring the
IPSec proposal
Configure the priority
of the IKE proposal
This is an integer from 1 to 100, indicating
the priority of a specified IKE proposal.
The lower the value, the higher the
priority.
Issue 01.01 (30 March 2009)
Nortel Networks Inc.
2-25