Manualshelf

Router User Manual

ManualsBrandsPanasonic ManualsNetwork Router8000
51525354555657585960
2 IPSec and IKE troubleshooting
Nortel Secure Router 8000 Series
Troubleshooting - VAS
2-10 Nortel Networks Inc. Issue 01.01 (30 March 2009)
Configuring an IPSec policy
# Configure the name of the IPSec policy to map1. In this policy, set the sequence number to
10 and the negotiation mode to manual; use the ACL and the IPSec proposal; and configure an
IP address, SPI, and the shared key for the remote tunnel end.
[RouterA] ipsec policy map1 10 manual
[RouterA-ipsec-policy-manual-map1-10] security acl 3101
[RouterA-ipsec-policy-manual-map1-10] proposal tran1
[RouterA-ipsec-policy-manual-map1-10] tunnel remote 202.38.162.1
[RouterA-ipsec-policy-manual-map1-10] sa spi outbound esp 12345
[RouterA-ipsec-policy-manual-map1-10] sa spi inbound esp 54321
[RouterA-ipsec-policy-manual-map1-10] sa string-key outbound esp abcdefg
[RouterA-ipsec-policy-manual-map1-10] sa string-key inbound esp gfedcba
Applying the IPSec policy
# Apply the IPSec policy map1 on the serial interface.
[RouterA] interface Pos 5/1/0
[RouterA-Pos5/1/0] ipsec policy map1