Ulterius Technologies LLC FDN40 Benutzerhandbuch
CHAPTER 8: IKE
Configuration User Manual
177
© Ulterius Technologies, LLC 2016. Confidential & Proprietary.
8.2.5.8
Configuring Phase 2 Parameters
This section provides the configuration details of phase 2 parameters for ESP
protocol.
protocol.
8.2.5.8.1
ESP Protocol with Integrity
This section lists the CLI configuration steps to configure phase-2 parameters
for ESP protocol.
for ESP protocol.
Enter the Global configuration mode.
UltOs# configure terminal
Enter the policy configuration mode.
UltOs(config)# crypto map sa
Set the phase 2 parameters for ESP.
UltOs(config-crypto-map)# )# crypto map ipsec encryption esp des
authentication esp sha1 pfs group2 lifetime secs 300
authentication esp sha1 pfs group2 lifetime secs 300
Exit the policy configuration mode.
UltOs(config-crypto-map)#end
View the configured phase 2 parameters.
UltOs# show crypto map sa
VPN Policy Parameters
-------------------------
Policy Name : sa
Policy Status : Inactive
Policy Type : IKE Pre-shared
Ike Version : v2
Local & Remote Protected N/W's : None <-- --> None
Local & Remote Port Range : 0-65535 <-- --> 0-
65535
65535
Security Mode : Tunnel
Local & Remote Tunnel Term Addr : 0.0.0.0 <== ==>
35.0.0.2
35.0.0.2
Interface Name : Not Configured
Policy Protocol : any
Policy Action : Apply
Anti Replay : Enable
IKE suite Info [PHASE I] :
Encryption Algo : DES
Hash Algorithm : HMAC MD5
Diffie-Hellman Group : DH Group 2
Life Time : 1500 Secs
Identity Information :