IPSEC手工配置是怎么搞的
R4ipsec proposal test
transform ah
#
ipsec policy tech 10 manual
security acl 3010
proposal test
tunnel local 10.1.1.1
tunnel remote 172.16.1.1
sa spi outbound ah 300
sa string-key outbound ah 100
#
tunnel-policy172.1.1.1
#
acl number 3010
rule 0 permit ip source 10.1.1.1 0 destination 172.16.1.1 0
R9
ipsec proposal test transform ah #ipsec policy tech 10 manual security acl 3010 proposal test tunnel local 172.16.1.1 tunnel remote 10.1.1.1 sa spi inbound ah 300 sa string-key inbound ah 100#acl number 3010 rule 0 permit ip source 172.16.1.1 0 destination 10.1.1.1 0
静态配置IPSEC是这样配置的吗?最后我吧这个策略应用在路由器4 和9的以太口上面。<r9>dis ipsecsabritotal phase-2 SAs: 0Src Address Dst Address SPI ProtocolAlgorithm--------------------------------------------------------------最后没有
http://bbs.hh010.com/xwb/images/bgimg/icon_logo.png 该贴已经同步到 小屁孩的微博 {:6_267:}{:6_267:}{:6_267:}{:6_267:}{:6_267:}
页:
[1]