Example of ipsec connection configuration, Example of ipsec connection configuration -21 – Carrier Access Adit 3000 Series and Multi-Service Router (MSR) Card none User Manual
Page 341
Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) CLI
14-21
Configuration - IPSec Mode
Example of IPSec Connection Configuration
Example of IPSec Connection Configuration
Adit 3104(config)#ipsec VPN_IPSEC 0
Adit 3104(config-ipsec-0)#dev-name VPNIPSec0
Adit 3104(config-ipsec-0)#net-type WAN
Adit 3104(config-ipsec-0)#aggressive-mode
Adit 3104(config-ipsec-0)#authentication pre-share ocho
Adit 3104(config-ipsec-0)#no encryption des
Adit 3104(config-ipsec-0)#no encryption 3des
Adit 3104(config-ipsec-0)#no encryption aes
Adit 3104(config-ipsec-0)#encryption aes192
Adit 3104(config-ipsec-0)#no encryption aes256
Adit 3104(config-ipsec-0)#group 1
Adit 3104(config-ipsec-0)#no group 2
Adit 3104(config-ipsec-0)#no group 5
Adit 3104(config-ipsec-0)#hash md5
Adit 3104(config-ipsec-0)#no hash sha
Adit 3104(config-ipsec-0)#no ipsec-manual
Adit 3104(config-ipsec-0)#lifetime time 3601
Adit 3104(config-ipsec-0)#local-subnet single ip 11.0.0.1
Adit 3104(config-ipsec-0)#remote-ip 172.15.16.2
Adit 3104(config-ipsec-0)#
Adit 3104(config-ipsec-0)#dpd-enable
Adit 3104(config-ipsec-0)#dpd-delay 70
Adit 3104(config-ipsec-0)#dpd-timeout 130
Adit 3104(config-ipsec-0)#ip route metric 11
Adit 3104(config-ipsec-0)#no ip default-route
Adit 3104(config-ipsec-0)#no ip rip
Adit 3104(config-ipsec-0)#
Adit 3104(config-ipsec-0)#remote-subnet single ip 31.0.0.1
Adit 3104(config-ipsec-0)#max-retries 4
Adit 3104(config-ipsec-0)#mode tunneling
Adit 3104(config-ipsec-0)#netbios remote-brc-addr 255.255.255.255
Adit 3104(config-ipsec-0)#reconnect
Adit 3104(config-ipsec-0)#rekey lifetime 3601 margin 539 percent 101
Adit 3104(config-ipsec-0)#no schedule-availability
Adit 3104(config-ipsec-0)#set-pfs 2