Avaya Configuring IPsec Services Manual do Utilizador Página 27
- Página / 122
- Índice
- MARCADORES
Avaliado. / 5. Com base em avaliações de clientes
Overview of IPsec
308630-15.1 Rev 00
1-9
The criteria (“selectors”) and action specifications used in your inbound and
outbound policies are stored in the security policy database (SPD).
IPsec defaults in favor of more security rather than less. If an outbound or inbound
packet does not match the criteria of any configured outbound or inbound policy
in the SPD, the packet is dropped.
IPsec discards outbound clear-text data packets unless you explicitly configure a
policy to bypass or protect them.
Policy Templates
Every IPsec policy is based on a policy template. A policy template is a predefined
policy definition that you can use on any IP interface. The template specifies one
or more criteria and an action to apply to incoming or outgoing data packets.
A policy template and every policy based on it must include at least one criterion
(for example, an IP source address) and one action (for example, an outbound
policy might specify a protect action). A policy template or policy can include two
actions if one of the actions is logging. The criterion specification determines
whether a data packet matches a particular security policy; the action specifies
how the policy is applied to the packet.
The action specifications that you can include in inbound and outbound policies
are discussed in the following two sections.
Inbound Policies
An inbound policy determines how a security gateway processes data packets
received from an untrusted network. Every packet arriving at a security gateway is
compared with the criteria to determine whether it matches an IPsec policy for
that router. If the incoming packet matches a bypass policy, the router accepts the
packet and, if the policy is so configured, logs it.
If the packet does not match any policy or matches a drop policy, the router rejects
the packet. When a packet does not match any policy, IPsec’s default action is to
drop the packet.
- Configuring IPsec Services 1
- Trademarks 2
- Restricted Rights Legend 2
- Statement of Conditions 2
- Contents 5
- 308630-15.1 Rev 00 vii 7
- 308630-15.1 Rev 00 ix 9
- 308630-15.1 Rev 00 xi 11
- Before You Begin 13
- Text Conventions 14
- Acronyms 15
- Hard-Copy Technical Manuals 16
- How to Get Help 17
- Chapter 1 19
- Overview of IPsec 19
- About IPsec 20
- Supported Routers 21
- Supported WAN Protocols 21
- IPsec Services 22
- How IPsec Works 23
- IPsec Tunnel Mode 24
- IPsec Elements 25
- Security Gateways 26
- Security Policies 26
- Security Associations 29
- Security Protocols 33
- Performance Considerations 35
- Chapter 2 37
- Installing IPsec 37
- Installing the IPsec Software 38
- Securing Your Site 40
- Securing Your Configuration 40
- Creating and Using NPKs 41
- Caution: 42
- Changing an NPK 43
- Monitoring NPKs 44
- Chapter 3 45
- Starting IPsec 45
- Creating Policies 46
- Specifying an Action 47
- Policy Considerations 47
- (continued) 48
- Automated SA Creation 51
- About Manual SA Creation 53
- Chapter 4 57
- Customizing IPsec 57
- Editing a Policy 58
- Adding a Policy 59
- Reordering Policies 62
- Modifying Automated SAs (IKE) 64
- Modifying Manual SAs 65
- Disabling IPsec 67
- Appendix A 69
- Site Manager Parameters 69
- Node Protection Key Parameter 70
- IPsec Parameters 71
- IPsec Policy Parameters 72
- Appendix B 81
- Definitions of k Commands 81
- Appendix C 83
- Configuration Examples 83
- 192.32.10.0 85
- 192.32.20.0 86
- Manual SA Policy Examples 87
- RTR1 92
- RTR2 92
- RTR3 95
- RTR4 95
- Appendix D 99
- IPsec Terminology 100
- Configuration Considerations 101
- Feature Comparison Summary 102
- 308630-15.1 Rev 00 103
- BayRS Tools 104
- Contivity Tools 104
- Symptoms You May See 105
- Protocol Numbers 107
- Appendix E 107
Manuais e produtos relacionados com Manuais de software Avaya Configuring IPsec Services
Manuais de software Avaya DMC DECT Fundamentals - Communications Server 1000 Manual do Utilizador
(340 páginas)
(340 páginas)
Manuais de software Avaya Configuring SNMP, BOOTP, DHCP, and RARP Services Manual do Utilizador
(108 páginas)
(108 páginas)
Manuais de software Avaya Nortel Business Communications Manager 450 1.0 Unified Messaging Guia de Configuração
(80 páginas)
(80 páginas)
Manuais de software Avaya Configuring Interface and Router Redundancy Manual do Utilizador
(72 páginas)
(72 páginas)
Manuais de software Avaya Quick-Starting Routers and BNX Platforms Manual do Utilizador
(126 páginas)
(126 páginas)
© 2020, manymanuals-pt.com. Todos os direitos reservados. | 0.035 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais