Avaya Configuring IPsec Services Manual de usuario descargar pdf (Pagina 84)

Configuring IPsec Services

C-2

308630-15.1 Rev 00

Automated SA (IKE) Policy Examples

As you review the security policy examples in this section, refer to Figure C-1.

Figure C-1. IPsec Automated Outbound Policies

The following outbound policies are configured for the four routers shown in

Figure C-1

• The SA pair between RTR1 and RTR2 uses both 3DES and HMAC MD5, and

the default SA expiry time of 8 hours.

• The SA pair between RTR1 and RTR3 uses only DES and the default SA

expiry time of 8 hours.

• The SA pair between RTR1 and RTR4 uses only SHA1 and an SA expiry time

of 24 hours.

RTR1

S32

INET

S31 - 119.68.12.1

RTR3

129.43.12.19 - S28

RTR2

189.132.10.1 - S52

RTR4

192.32.1.5 - S33

192.32.5.0

192.32.10.0

192.32.20.0

192.32.30.0

S51

S27

S31

Internet

1 2 ... 79 80 81 82 83 84 85 86 87 88 89 ... 121 122

Sin comentarios

Avaya Configuring IPsec Services Manual de usuario Pagina 84