Cisco Cisco Packet Data Gateway (PDG)
Sample L2 Intrachassis HA Configuration
▀ ASR 9000 RSP Configuration (IOS-XR)
▄ SecGW Administration Guide, StarOS Release 17
70
ASR 9000 RSP Configuration (IOS-XR)
Notes:
Enable oneP communication. (TLS Protocol)
Configure an IOS-XP access list.
Configure a management interface
Configure a public network LC interface for IKE and RSP traffic
Configure actual and virtual interfaces for IKE, clear traffic and ICSR-SRP interfaces to VM-1 and VM-2.
Configure Bridge-group Virtual Interfaces (BVIs) to bridge the IKE and clear traffic ports between VM-1 and
VM-2.
Configure Static Integrated Route Bridging (IRB) routes and L2 VLANs.
Shutdown all unused ports.
<snip>
!
onep
transport type tls localcert onep-tp disable-remotecert-validation
!
virtual-service enable
virtual-service SecGW1
vnic interface TenGigE0/1/1/0
vnic interface TenGigE0/1/1/1
vnic interface TenGigE0/1/1/2
activate
!
virtual-service SecGW3
vnic interface TenGigE0/1/1/6
vnic interface TenGigE0/1/1/7
vnic interface TenGigE0/1/1/8
activate
!
virtual-service SecGW4
vnic interface TenGigE0/1/1/9
vnic interface TenGigE0/1/1/10
vnic interface TenGigE0/1/1/11
activate
!
virtual-service SecGW2
vnic interface TenGigE0/1/1/3
vnic interface TenGigE0/1/1/4
vnic interface TenGigE0/1/1/5
activate
!
crypto ca trustpoint onep-tp
crl optional
subject-name CN=ASR9K-8.cisco.com
!
onep
transport type tls localcert onep-tp disable-remotecert-validation
!
virtual-service enable
virtual-service SecGW1
vnic interface TenGigE0/1/1/0
vnic interface TenGigE0/1/1/1
vnic interface TenGigE0/1/1/2
activate
!
virtual-service SecGW3
vnic interface TenGigE0/1/1/6
vnic interface TenGigE0/1/1/7
vnic interface TenGigE0/1/1/8
activate
!
virtual-service SecGW4
vnic interface TenGigE0/1/1/9
vnic interface TenGigE0/1/1/10
vnic interface TenGigE0/1/1/11
activate
!
virtual-service SecGW2
vnic interface TenGigE0/1/1/3
vnic interface TenGigE0/1/1/4
vnic interface TenGigE0/1/1/5
activate
!
crypto ca trustpoint onep-tp
crl optional
subject-name CN=ASR9K-8.cisco.com