Manualshelf

User`s guide

ManualsBrandsEnterasys ManualsComputer equipmentANG-3000
311312313314315316317318319320
XSR Users Guide 285
Chapter 11 Configuration Examples
Configuring the Virtual Private Network
XSR Configuration
XSR(config)#access-list 120 permit ip 192.168.3.0 0.0.0.255
192.168.1.0 0.0.0.255
XSR(config)#crypto isakmp proposal test
XSR(config-isakmp)#authentication pre-share
XSR(config-isakmp)#encryption des
XSR(config-isakmp)#hash md5
XSR(config)#crypto isakmp peer 0.0.0.0 0.0.0.0
XSR(
config-isakmp-peer)#proposal test
XSR(config)#cry ips trans esp-des-md5 esp-des esp-md5-hmac
XSR(cfg-crypto-tran)#set pfs group2
XSR(cfg-crypto-tran)#no set security-association life kilo
XSR(cfg-crypto-tran)#set security-association life secon 700
XSR(config)#crypto map test 20
XSR(config-crypto-m)#set transform-set esp-des-md5
XSR(config-crypto-m)#match address 120
XSR(config-crypto-m)#set peer 192.168.2.5
XSR(config-crypto-m)#mode tunnel
XSR(config)#interface fastethernet 1
XSR(config-if<F1>)#no shutdown
XSR(config-if<F1>)#ip address 192.168.1.2 255.255.255.0
XSR(config)#interface fastethernet 2
XSR(config-if<F2>)#crypto map test
XSR(config-if<F2>)#no shutdown
XSR(config-if<F2>)#ip address 192.168.2.2 255.255.255.0
XSR(config)#ip route 192.168.3.0 255.255.255.0 192.168.2.5
XSR(config)#ip route 0.0.0.0 0.0.0.0 192.168.2.1
XSR(config)#snmp-server disable