
Chapter 4 Configuring the ISA and ISM
IPSec Example
Note In the above example, the encryption DES of policy 15 would not appear in the written configuration because this is the default value for the encryption algorithm parameter.
A transform set defines how the traffic will be protected
crypto ipsec
mode tunnel
A crypto map joins the transform set and specifies where the protected traffic is sent (the remote IPSec peer).
crypto map toRemoteSite 10
set peer 10.0.0.2
set
The crypto map is applied to an interface.
interface Serial0 ip address 11.0.0.2
crypto map toRemoteSite
An IPSec access list defines which traffic to protect.
Router B Configuration
Specify the parameters to be used during an IKE negotiation.
crypto isakmp policy 15 encryption des
hash md5
authentication
lifetime 5000
crypto isakmp key 1234567890 address 11.0.0.2 crypto isakmp identity address
A transform set defines how the traffic will be protected.
crypto ipsec
mode tunnel
A crypto map joins the transform set and specifies where the protected traffic is sent (the remote IPSec peer).
crypto map toRemoteSite 10
set
The crypto map is applied to an interface
interface Serial0
ip address 10.0.0.2
crypto map toRemoteSite
An IPSec access list defines which traffic to protect
|
| Integrated Services Adapter and Integrated Services Module Installation and Configuration |
|
| |
|
|
| |||
|
|
|
| ||
|
|
|
|