Nortel 4134 ユーザーガイド
Configuring IPsec for site-to-site VPN
133
3
To specify the IPsec policy to configure, enter:
ipsec policy <policy-name> <peer-address>
4
To select the IPsec proposal to configure, enter:
proposal <1-5> protocol {esp | ah}
—End—
Table 58
Variable definitions
Variable definitions
Variable
Value
<1-5>
Specifies the proposal priority.
esp
Specifies ESP protocol. When chosen, the proposal
parameters are set to the following defaults: 3DES,
SHA1 and tunnel mode.
parameters are set to the following defaults: 3DES,
SHA1 and tunnel mode.
ah
Specifies AH protocol. When chosen, the proposal
parameters are set to the following defaults: SHA1
and tunnel mode.
parameters are set to the following defaults: SHA1
and tunnel mode.
Configuring encryption algorithm for IPsec proposal
Configure the encryption algorithm for the IPsec proposal.
Procedure steps
Step
Action
1
To enter the configuration mode, enter:
configure terminal
2
To specify crypto configuration for IPsec and IKE, enter:
crypto
3
To specify the IPsec policy to configure, enter:
ipsec policy <policy-name> <peer-address>
4
To select the IPsec proposal to configure, enter:
proposal <1-5>
5
To configure the encryption algorithm for the proposal, enter:
encryption-algorithm {des-cbc | 3des-cbc | aes128-cbc
| aes192-cbc | aes256-cbc}
—End—
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.