Configuring an ipsec policy, Applying the ipsec policy – Panasonic 8000 User Manual
Page 57
Attention! The text in this document has been recognized automatically. To view the original document, you can use the "Original mode".
2 IPSec and IKE troubleshooting
Nortel Secure Router 8000 Series
_________ Troubleshooting - VAS
Configuring an IPSec policy
# Configure the name of the IPSec policy to map1. In this policy, set the sequence number to
10 and the negotiation mode to manual; use the ACL and the IPSec proposal; and configure an
IP address, SPI, and the shared key for the remote tunnel end.
[RouterA] ipsec policy map1 10 manual
[RouterA-ipsec-policy-manual-map
1-10_
[RouterA-ipsec-policy-manual-map
1-10_
[RouterA-ipsec-policy-manual-map
1-10_
[RouterA-ipsec-policy-manual-map
1-10_
[RouterA-ipsec-policy-manual-map
1-10_
[RouterA-ipsec-policy-manual-map
1-10_
[RouterA-ipsec-policy-manual-map 1-10_
security acl 3101
proposal tranl
tunnel remote 202.38.162.1
sa spi outbound esp 12345
sa spi inbound esp 54321
sa string-key outbound esp abcdefg
sa string-key inbound esp gfedcba
Applying the IPSec policy
# Apply the IPSec policy map1 on the serial interface.
[RouterA] interface Pos 5/1/0
[RouterA-Pos5/1/0] ipsec policy map1
2-10
Nortel Networks Inc.
Issue 01.01 (30 March 2009)