Manualshelf

Technical information

ManualsBrandsCisco ManualsComputer equipmentWS-SVC-IPSEC-1= - IPSec VPN Services Module
31323334353637383940
40
IPSec VPN Acceleration Services Module Installation and Configuration Note
78-14459-03 Rev C0
Configuring a VPN Using the VPN Module
The following is a configuration example for the standby chassis that is configured for IPSec stateful
failover:
StandBy# show run
Building configuration...
Current configuration : 2236 bytes
!
version 12.2
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname StandBy
!
boot system flash sup-bootflash:
!
redundancy
main-cpu
auto-sync standard
ip subnet-zero
!
!
no ip domain-lookup
!
!
ssp group 100
remote 40.0.0.1
redundancy KNIGHTSOFNI
no mls ip multicast aggregate
no mls ip multicast non-rpf cef
!
crypto isakmp policy 1
encr 3des
authentication pre-share
crypto isakmp key NEEWOMM address 0.0.0.0 0.0.0.0
crypto isakmp ssp 100
!
!
crypto ipsec security-association lifetime seconds 86400
!
crypto ipsec transform-set TS1 esp-3des esp-sha-hmac
!
crypto map ha ha replay-interval inbound 10 outbound 1000
crypto map ha 10 ipsec-isakmp
set peer 172.16.31.3
set transform-set TS1
match address 101
!
!
spanning-tree extend system-id
no spanning-tree vlan 4
!
!
!
interface GigabitEthernet1/1
no ip address
no ip redirects
crypto connect vlan 4
!
interface GigabitEthernet1/2
ip address 40.0.0.2 255.255.255.0
no ip redirects