Avaya Configuring IPsec Services Manual do Utilizador descarregar pdf (Página 87)

Configuration Examples

308630-15.1 Rev 00

C-5

Example 3: Required Policies, Proposals, and SA Destinations on RTR1 and

RTR4 to Protect Data Between RTR1 Subnet 192.32.5.0 and RTR4 Subnet

192.32.30.0

Manual SA Policy Examples

As you review the security policy examples in this section, refer to Figure C-2.

Two routers (RTR1 and RTR2) have OSPF interfaces configured for type NBMA

transmit unicast frames. An outbound and an inbound bypass policy protect all

unicast traffic for the specified router subnetworks.

Security policy examples 1 and 2 show how to configure outbound policies to

protect all unicast traffic between RTR1 and RTR2; examples 3 and 4 show how to

configure outbound policies to protect all unicast traffic between RTR2 and RTR3;

and examples 5, 6, and 7 show how to configure outbound policies to protect all

traffic between RTR1 and RTR3. A bypass inbound policy is in effect for all

incoming traffic to the routers so that no SAs are required.

RTR 1 Interface S31

Policy

Outbound

Action

Protect

Criteria

IP source address range: 192.32.5.0 - 192.32.5.255

IP destination address range: 192.32.30.0 - 192.32.30.255

SA Destination

192.32.1.5

Preshared Key

0xabba1579daba1234

Proposal

SHA1, expiry minutes 1440

RTR 4 Interface S33

Policy

Outbound

Action

Protect

Criteria

IP source address range: 192.32.30.0 - 192.32.30.255

IP destination address range: 192.32.5.0 - 192.32.5.255

SA Destination

119.68.12.1

Preshared Key

0xabba1579daba1234

Proposal

SHA1, expiry minutes 1440

1 2 ... 82 83 84 85 86 87 88 89 90 91 92 ... 121 122

Comentários a estes Manuais

Sem comentários

Avaya Configuring IPsec Services Manual do Utilizador Página 87

Comentários a estes Manuais

Manuais e produtos relacionados com Manuais de software Avaya Configuring IPsec Services