Avaya BSGx4e CLI User's Guide Page 58
- Page / 184
- Table of contents
- BOOKMARKS
Rated. / 5. Based on customer reviews
IP security commands 3 Configuration commands
58 NN47928-107
ipsec policy
An IPsec policy specifies the two secure networks that a VPN tunnel
connects and the security parameters used to encrypt and decrypt traffic
between the two networks.
The configuration of an IPsec policy also allows an IP interface to be
configured for the policy. The following are required for an IPSec policy to
bring up a successful VPN tunnel:
z A preshared key must be defined for the remote secure gateway. The
gateway parameter of the policy must match the peer of a preshared key
record. The same preshared key value must be configured at the remote
secure gateway.
z The VPN interface must be assigned an IP address.
z A route must send traffic to the VPN interface.
z A firewall policy must allow ESP traffic from the remote secure gateway.
(IP packets sent from the remote secure network to the local secure
network are encrypted as ESP packets.)
z A firewall policy must allow IP packets sent from the local secure
network to the remote secure network. Otherwise, ESP packets cannot
be routed to the remote secure gateway.
Use this command to configure an IPsec policy between a local subnet and
a remote subnet.
Syntax config ipsec policy <name> gateway <hostname|ip address> local
<ip address> remote <ip address> prop <proposal>
Parameters name Enter a name for this VPN.
gateway hostname|ip address
Enter a Host name or fixed IP address of the
remote secure gateway.
local ip address Enter a local IP address secured by the VPN.
Valid values include any or addresses specified
as a range or as a subnet.
remote ip address Enter a remote IP address secured by the VPN.
Valid values include any or addresses specified
as a range or as a subnet.
prop proposal Enter the name of the IPsec proposal. The
default value is vpn-a.
Example The following command configures a policy that secures all traffic between
the BSGX4e and the gateway 172.28.16.20.
> config ipsec policy alltraffic gateway 172.28.16.20 local
any remote any prop VPN-A
Related
commands
del ipsec policy
display ipsec policy
show ipsec policy
clear protocol esp
show protocol esp
- CLI Reference Guide 1
- BSGX4e 1.2 2
- Business Services Gateway 2
- CONTENTS 3
- 4 NN47928-107 4
- NN47928-107 5 5
- 6 NN47928-107 6
- 1 About this guide 7
- Documentation 8
- How to get help 9
- 10 NN47928-107 10
- 2 COMMAND INTERFACE 11
- Command entry 12
- Online help 13
- Specific help 14
- NN47928-107 15 15
- CLI command syntax 16
- Command keyword NO 17
- Command keyword ALL 18
- Interactive mode 19
- 20 NN47928-107 20
- 3 CONFIGURATION COMMANDS 21
- Audit status command 24
- NN47928-107 25 25
- ARP command 26
- NN47928-107 27 27
- Calls analyser command 28
- NN47928-107 29 29
- 30 NN47928-107 30
- DHCP server command 31
- 32 NN47928-107 32
- NN47928-107 33 33
- 34 NN47928-107 34
- NN47928-107 35 35
- 36 NN47928-107 36
- NN47928-107 37 37
- 38 NN47928-107 38
- NN47928-107 39 39
- X X X X X X 40
- NN47928-107 41 41
- 42 NN47928-107 42
- NN47928-107 43 43
- 44 NN47928-107 44
- — ICMP requests are sent to 46
- NN47928-107 47 47
- 48 NN47928-107 48
- NN47928-107 49 49
- 50 NN47928-107 50
- Interface commands 51
- 52 NN47928-107 52
- NN47928-107 53 53
- 54 NN47928-107 54
- NN47928-107 55 55
- IP security commands 56
- NN47928-107 57 57
- 58 NN47928-107 58
- NN47928-107 59 59
- 60 NN47928-107 60
- Local call routing commands 61
- 62 NN47928-107 62
- NN47928-107 63 63
- 64 NN47928-107 64
- Logging commands 65
- 66 NN47928-107 66
- NN47928-107 67 67
- 68 NN47928-107 68
- NN47928-107 69 69
- Media setting command 70
- . If the 71
- 72 NN47928-107 72
- NN47928-107 73 73
- 74 NN47928-107 74
- NN47928-107 75 75
- 76 NN47928-107 76
- NN47928-107 77 77
- Netflow commands 78
- 80 NN47928-107 80
- PMON commands 81
- 82 NN47928-107 82
- NN47928-107 83 83
- Protocol commands 84
- NN47928-107 85 85
- 86 NN47928-107 86
- Proxy ARP commands 87
- 88 NN47928-107 88
- QoS (GoS) commands 89
- 90 NN47928-107 90
- NN47928-107 91 91
- 92 NN47928-107 92
- NN47928-107 93 93
- 94 NN47928-107 94
- Radius commands 95
- 96 NN47928-107 96
- NN47928-107 97 97
- Relay commands 98
- NN47928-107 99 99
- 100 NN47928-107 100
- NN47928-107 101 101
- 102 NN47928-107 102
- NN47928-107 103 103
- 104 NN47928-107 104
- NN47928-107 105 105
- 106 NN47928-107 106
- RIP command 107
- 108 NN47928-107 108
- Route commands 109
- 110 NN47928-107 110
- Security commands 111
- 112 NN47928-107 112
- NN47928-107 113 113
- 114 NN47928-107 114
- Security NAT public 115
- NN47928-107 117 117
- Service commands 118
- NN47928-107 119 119
- 120 NN47928-107 120
- NN47928-107 121 121
- Shell terminal command 122
- NN47928-107 123 123
- SIP commands 124
- NN47928-107 125 125
- 126 NN47928-107 126
- NN47928-107 127 127
- 128 NN47928-107 128
- NN47928-107 129 129
- 130 NN47928-107 130
- NN47928-107 131 131
- SIP UA settings 132
- NN47928-107 133 133
- SNMP commands 134
- NN47928-107 135 135
- 136 NN47928-107 136
- NN47928-107 137 137
- SSL commands 138
- NN47928-107 139 139
- 140 NN47928-107 140
- NN47928-107 141 141
- 142 NN47928-107 142
- Switch commands 143
- 144 NN47928-107 144
- NN47928-107 145 145
- 146 NN47928-107 146
- NN47928-107 147 147
- 148 NN47928-107 148
- NN47928-107 149 149
- 150 NN47928-107 150
- NN47928-107 151 151
- 152 NN47928-107 152
- NN47928-107 153 153
- 154 NN47928-107 154
- System commands 155
- 156 NN47928-107 156
- Attention: 157
- 158 NN47928-107 158
- NN47928-107 159 159
- 160 NN47928-107 160
- NN47928-107 161 161
- 162 NN47928-107 162
- NN47928-107 163 163
- 164 NN47928-107 164
- Tacplus command 165
- 166 NN47928-107 166
- NN47928-107 167 167
- User commands 168
- NN47928-107 169 169
- 170 NN47928-107 170
- NN47928-107 171 171
- 172 NN47928-107 172
- Voice Commands 173
- 174 NN47928-107 174
- NN47928-107 175 175
- 176 NN47928-107 176
- NN47928-107 177 177
- 178 NN47928-107 178
- NN47928-107 179 179
- 180 NN47928-107 180
- NN47928-107 181 181
- 182 NN47928-107 182
- NN47928-107 183 183
- 184 NN47928-107 184
© 2020, manymanuals.com. All rights reserved. | 1.367 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comments to this Manuals