Cisco 7100 Series Spezifikationen Seite 43
- Seite / 112
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Intranet VPN Business Scenario 3-13
Configuring IKE Policies
Note This section only contains basic configuration information for enabling encryption
services on the GRE tunnel configured in the “Step 1—Configuring the Tunnel” section on
page 3-4. Refer to the “IP Security and Encryption” part of the Security Configuration
Guide and the Security Command Reference publications for detailed configuration
information on IPSec, IKE, and CA.
Refer to the Integrated Service Adapter and Integrated Service Module Installation and
Configuration publication for detailed configuration information on the ISM.
Configuring IKE Policies
IKE is enabled by default. IKE does not have to be enabled for individual interfaces, but is
enabled globally for all interfaces in the router. You must create IKE policies at each peer.
An IKE policy defines a combination of security parameters to be used during the IKE
negotiation.
You can create multiple IKE policies, each with a different combination of parameter
values. If you do not configure any IKE policies, the router uses the default policy, which
is always set to the lowest priority, and which contains each parameter’s default value.
Foreach policythat you create, you assign a unique priority (1 through 10,000,with1 being
the highest priority). You can configure multiple policies on each peer—but at least one of
these policies must contain exactly the same encryption, hash, authentication, and
Diffie-Hellman parameter values as one of the policies on the remote peer. If you do not
specify a value for a parameter, the default value is assigned.
Note The default policy and the default values for configured policies do not show up in
the configuration when you issue a show running-config EXEC command. Instead, to see
the default policy and any default values within configured policies, use the show crypto
isakmp policy EXEC command.
This section contains basic steps to configure IKE policies and includes the followingtasks:
1 Creating Policies
2 Additional Configuration Required for IKE Policies
3 Verifying IKE Policies
- Cisco 7100 Series VPN 1
- Configuration Guide 1
- Preface vii 3
- Audience 4
- Organization 5
- Related Documentation 6
- Preface xi 7
- Conventions 8
- Cisco Connection Online 9
- Documentation CD-ROM 10
- Using Cisco IOS Software 11
- Getting Help 12
- Finding Command Options 13
- • controller t1 1 13
- Understanding Command Modes 18
- Summary of Main Command Modes 19
- Router(config-if)# 20
- Router(config-subif)# 20
- Saving Configuration Changes 21
- Saving Configuration Changes 22
- Before You Begin 23
- Considerations 25
- Before You Begin 2-5 27
- Assumptions 29
- Intranet VPN Business 31
- Scenario 31
- Scenario Description 32
- Step 1—Configuring the Tunnel 34
- Step 1—Configuring the Tunnel 35
- Step 3—Configuring Encryption 41
- Configuring IKE Policies 43
- Creating Policies 44
- • RSA signatures method: 45
- Configuring Preshared Keys 46
- Verifying IKE Policies 48
- Configuring IPSec 49
- Creating Crypto Access Lists 51
- Verifying Crypto Access Lists 51
- Defining Transform Sets 52
- Step 3—Configuring Encryption 54
- Verifying Transform Sets 55
- Creating Crypto Map Entries 58
- Verifying Crypto Map Entries 59
- To verify the configuration: 65
- Extranet VPN Business 73
- 67890 address 172.17.2.4 83
- Tunnel mode 88
- Transport mode 88
- Configuring Crypto Maps 89
- Configuring Crypto Maps 93
Verwandte Produkte und Handbücher für Vernetzung Cisco 7100 Series
Vernetzung Cisco VPN 3000 Bedienungsanleitung
(25 Seiten)
(25 Seiten)
Vernetzung Cisco 1802W Bedienungsanleitung
(40 Seiten)
(40 Seiten)
Vernetzung Cisco 4500M Installationsanleitung
(32 Seiten)
(32 Seiten)
Vernetzung Cisco VPN 3000 Betriebsanweisung
(502 Seiten)
(502 Seiten)
Vernetzung Cisco EF3116 Bedienungsanleitung
(8 Seiten)
(8 Seiten)
Vernetzung Cisco 826 Bedienungsanleitung
(8 Seiten)
(8 Seiten)
Vernetzung Cisco 1861 Bedienungsanleitung
(13 Seiten)
(13 Seiten)
Vernetzung Cisco TES301 Bedienungsanleitung
(52 Seiten)
(52 Seiten)
Vernetzung Cisco MGBSX1 Bedienungsanleitung
(16 Seiten)
(16 Seiten)
Vernetzung Cisco PA-2FE-TX Spezifikationen
(60 Seiten)
(60 Seiten)
Vernetzung Cisco 880 Series Bedienungsanleitung
(18 Seiten)
(18 Seiten)
Vernetzung Cisco EPC3825 Bedienungsanleitung
(8 Seiten)
(8 Seiten)
Vernetzung Cisco DPC3008 Betriebsanweisung
(44 Seiten)
(44 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.115 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern