Nortel 4134 Guia Do Utilizador
Configuring tunnel parameters
187
[no] tunnel path_mtu_discovery
—End—
Configuring the tunnel as an untrusted interface for IPsec protection
Configure the tunnel as untrusted for the purpose of IPsec protection.
Procedure steps
Step
Action
1
To enter configuration mode, enter:
configure terminal
2
To specify the name of the tunnel to configure, enter:
interface tunnel <tunnel-name>
3
To configure tunnel protection, enter:
crypto {trusted | untrusted}
—End—
Table 94
Variable definitions
Variable definitions
Variable
Value
trusted
Specifies that the tunnel is part of a trusted network.
untrusted
Specifies that the tunnel is part of an untrusted
network.
network.
Configuring tunnel protection with IPsec
This command associates a tunnel with an IPsec profile. IPsec automatically
derives the IPsec peer and proxy information from the configured tunnel
source and tunnel destination values. Therefore, you do not need to create
an IPsec policy to define peer and match addresses.
derives the IPsec peer and proxy information from the configured tunnel
source and tunnel destination values. Therefore, you do not need to create
an IPsec policy to define peer and match addresses.
IPsec creates a default IKE policy and transport-mode IPsec policy for the
tunnel endpoint.
tunnel endpoint.
Procedure steps
Step
Action
1
To enter configuration mode, enter:
configure terminal
Nortel Secure Router 4134
Security — Configuration and Management
NN47263-600
01.02
Standard
10.0
3 August 2007
Copyright © 2007, Nortel Networks
.