Ulterius Technologies LLC FDN40 사용자 설명서
CHAPTER 7: IPSEC
Configuration User Manual
148
© Ulterius Technologies, LLC 2016. Confidential & Proprietary.
No.of VPN policies configured = 1
7.3.2.5
Configuring IPSec Session Keys
The IPSec session keys are configured for a VPN policy to set the security
protocol, the authentication and encryption algorithms to be applied, and the
inbound and outbound security parameter index that is used to uniquely
identify a SA. This section describes the steps involved in configuring the
IPSec session keys.
protocol, the authentication and encryption algorithms to be applied, and the
inbound and outbound security parameter index that is used to uniquely
identify a SA. This section describes the steps involved in configuring the
IPSec session keys.
To configure the IPSec session keys
1. Enter the Global Configuration mode.
1. Enter the Global Configuration mode.
UltOs# configure terminal
2. Enter the Crypto Map Configuration mode for an existing policy.
UltOs(config)# crypto map crypto_map_name
3. Configure the IPSec session key.
UltOs(config-crypto-map)# set session-key authenticator esp hmac-
sha1 abcdef7812345678123456781234567812345678 esp des cipher
abcdef7812345678 outbound 257 inbound 256
sha1 abcdef7812345678123456781234567812345678 esp des cipher
abcdef7812345678 outbound 257 inbound 256
4. Exit from the Crypto Map Configuration mode.
UltOs(config-crypto-map)# end
To view the VPN policy parameters
5. View the parameters of the VPN policy.
5. View the parameters of the VPN policy.
UltOs# sh crypto map
VPN Policy Parameters
-------------------------
Policy Name : crypto_map_name
Policy Status : Inactive
Policy Type : IPSec Manual
Ike Version : v1
Local & Remote Protected N/W's : None <-- --> None
Security Mode : Tunnel
Local & Remote Tunnel Term Addr : 0.0.0.0 <== ==>
35.0.0.1
35.0.0.1
Interface Name : Not Configured
Policy Protocol : any
Policy Action : Apply
In/Out bound SPI : 256 / 257
Security Protocol : ESP
Authentication Algorithm : HMAC-SHA1
Encryption Algo : DES
Anti Replay : Disable
Crypto Session Status : Inactive