Technical information

ManualsBrandsCisco ManualsComputer equipmentWS-SVC-IPSEC-1= - IPSec VPN Services Module

IPSec VPN Acceleration Services Module Installation and Configuration Note

78-14459-03 Rev C0

Configuration Examples

crypto ipsec transform-set 3des_sha1_ts esp-3des esp-sha-hmac

crypto map cmap2 100 ipsec-isakmp

set peer 192.0.0.1

set transform-set 3des_sha1_ts

match address acl0

no spanning-tree vlan 2

redundancy

mode rpr-plus

main-cpu

auto-sync running-config

auto-sync standard

interface GigabitEthernet3/1

no ip address

!!! COS 5 and 7 will go to high priority queue

priority-queue cos-map 1 5 7

!!! Trust Ethernet frame COS bits

mls qos trust cos

flowcontrol receive on

flowcontrol send off

switchport

switchport trunk encapsulation dot1q

switchport trunk allowed vlan 1,2,1002-1005

switchport mode trunk

cdp enable

interface GigabitEthernet3/2

no ip address

!!! This command is added automatically when /1 was configured

priority-queue cos-map 1 5 7

!!! Trust Ethernet frame COS bits

mls qos trust cos

flowcontrol receive on

flowcontrol send off

switchport

switchport trunk encapsulation dot1q

switchport trunk allowed vlan 1,1002-1005

switchport mode trunk

cdp enable

spanning-tree portfast trunk

interface GigabitEthernet4/1

no ip address

!!! Trust incomming ip precedence bits (from WAN side)

mls qos trust ip-precedence

crypto connect vlan 2

interface GigabitEthernet4/16

ip address 13.0.0.1 255.0.0.0

!!! Trust incomming ip precedence bits (from LAN side)

mls qos trust ip-precedence

interface Vlan2

ip address 192.0.0.2 255.255.255.0

no mop enabled

crypto map cmap2

ip classless

ip route 12.0.0.0 255.0.0.0 192.0.0.1