Cisco WS-X4604-GWY - VoIP Gateway Especificaciones Pagina 118
- Pagina / 166
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
7-4
Cisco Catalyst 4000 Access Gateway Module Installation and Configuration Note
OL-3008-01
Chapter 7 Configuring Encryption Services
Configuring the Encryption Service Adapter
encryption and authentication keys to be used by IPSec. IPSec can be used to protect one or more data
flows between a pair of hosts, between a pair of security gateways, or between a security gateway and a
host.
To configure IPSec network security, follow this procedure:
Command Purpose
Step 1
gateway(config)# crypto ipsec
security-association lifetime
seconds seconds kilobytes kilobytes
Specifies the lifetime of a security association
1
.
As a general rule, the shorter the lifetime (up to a point),
the more secure your IKE negotiations will be. However,
with longer lifetimes, future IPSec security associations
can be set up more quickly.
The default lifetimes are 3600 seconds (one hour) and
4608000 kilobytes (10 megabytes per second for one
hour).
Step 2
gateway(config)# crypto ipsec
transform-set transform_set_name
transform1 [transform2 [transform3]]
Specifies a transform set
2
and enter transform-set
configuration mode.
To define a transform set, specify one to three
"transforms"---each transform represents an IPSec
security protocol (ESP or AH) plus the algorithm you want
to use. When the particular transform set is used during
negotiations for IPSec security associations, the entire
transform set (the combination of protocols, algorithms
and other settings) must match a transform set at the
remote peer.
Step 3
gateway(cfg-crypto-trans)# exit
Returns to global configuration mode.
Step 4
gateway(config)# crypto map map_name
seq_num ipsec-isakmp [dynamic
dynamic_map_name] [discover]
Creates a crypto map
3
denoted by map-name. Enter crypto
map configuration mode, unless you use the dynamic
keyword.
seq-num is the number you assign to the crypto map entry.
ipsec-isakmp indicates that IKE will be used to establish
the IPSec security associations for protecting the traffic
specified by this crypto map entry.
dynamic is an optional argument specifying that this
crypto map entry references a preexisting dynamic crypto
map. Dynamic crypto maps are policy templates used in
processing negotiation requests from a peer IPSec device.
If you use this keyword, none of the crypto map
configuration commands will be available.
dynamic-map-name specifies the name of the dynamic
crypto map set that should be used as the policy template.
Step 5
gateway(config-crypto map)# set peer
hostname|ip_address
Specifies the same remote IPSec peer that you specified in
Step 4 in the previous procedure, Configure the Internet
Key Exchange Security Protocol, page 7-3.
Step 6
gateway(config-crypto map)# set
transform-set transform_set_name
For this crypto map entry, specify the same transform set
that you specified in Step 2 of this procedure.
- Cisco Catalyst 4000 1
- Access Gateway Module 1
- CONTENTS 3
- Contents 4
- Audience 9
- Organization 9
- Conventions 10
- Safety Overview 11
- Related Documentation 12
- Obtaining Documentation 13
- Documentation Feedback 14
- Cisco.com 14
- Technical Assistance Center 15
- Overview 17
- IP Telephony Campus 18
- Large Branch Office 18
- • the console port on the AGM 19
- Hardware Features 20
- Cisco Catalyst 4000 DSP Set 21
- Data Interface Modules 21
- Voice Interface Modules 22
- Signaling Support on AGM 23
- Switch-Type Support on AGM 23
- Software Features 24
- Security 25
- Resiliency 25
- Network Management Support 26
- Preparing to Install the AGM 27
- Installing the AGM 29
- Hot-Swapping Features 31
- Checking the AGM Operation 32
- Power Supply 1 34
- Power Supply 2 34
- WAN Interface Modules 35
- SEE MANUAL 36
- INSTALLATION 36
- Straight-through 41
- RJ-11-to-RJ-11 cable 41
- RJ-11 ports 41
- RJ-11 wall jack 41
- RJ-21 Connectors 42
- Velcro strap 43
- ConfigurableNot used 45
- RJ-48S ports 47
- RJ-48S wall jack 47
- RJ-48C ports 48
- NT1 device 48
- RJ-45-to-RJ-45 cable 48
- S/T port 48
- RJ-48C-to-RJ-48C cable 50
- RJ-48C wall jack 50
- Booting the AGM 53
- Accessing the AGM 54
- Configuring the Console Port 55
- Connecting a Terminal 56
- Connecting a Modem 56
- Using the Cisco IOS CLI 57
- Getting Help 58
- Command Modes 58
- Gateway(config-if)# 59
- (config 59
- Gateway(config-dial-peer)# 59
- Saving Configuration Changes 60
- Table 4-2 ISDN Switch Types 68
- Configuring T1 Interfaces 69
- Configuring E1 Interfaces 71
- Preparing to Configure VoIP 75
- Configuring Voice Interfaces 76
- MGCP Configuration 77
- Enabling MGCP 78
- • E&M Wink Start 81
- • E&M Delay Start 81
- H.323 Gateway Configuration 86
- FXS Emulation Example 90
- FXO Emulation Example 90
- E&M Emulation Example 91
- Configuring ISDN BRI Lines 92
- Gateway 1 Configuration 95
- T1/E1 Configuration (H.323) 96
- T1/PRI Configuration Example 97
- E1/PRI Configuration Example 98
- Configuration for AGM AGLB-1 99
- Configuration for AGM AGLB-2 100
- FXO Connection to PSTN 101
- San Jose Salt Lake City 102
- AGM SLC Configuration 103
- OL-3008-01 104
- Configuring FXS Voice Ports 106
- Validating the Configuration 107
- Fine-Tuning FXS Voice Ports 108
- Activating the Voice Port 110
- Sample Configuration 110
- Verifying the Configuration 120
- Sample Configurations 121
- Configuration File for Peer 1 124
- Configuration File for Peer 2 126
- Configuring the DSP Farm 129
- IP Telephony Gateway Mode 130
- Conferencing Service 131
- Transcoding Service 132
- Troubleshooting the AGM 137
- Troubleshooting Controller 138
- Troubleshooting Hardware 141
- Troubleshooting TDM 141
- Troubleshooting DSP 142
- SIMM 3 DSP 12–17 143
- SIMM 4 DSP 18–23 143
- Entering ROM Monitor Mode 145
- Configuring for Autoboot 146
- ROM Monitor Commands 147
- Debugging Commands 150
- Cookie Commands 151
- Upgrading the ROM Monitor 157
- Using Loss Plan Defaults 159
- Transmission Loss Plan 160
- Console Connector Pinouts 161
- Management Port Pinouts 161
- Identifying a Rollover Cable 163
- Connecting to a PC 164
- Connecting to a Terminal 164
Relacionado con productos y manuales para Gateways / Controladores Cisco WS-X4604-GWY - VoIP Gateway
(14 paginas)
(90 paginas)
(25 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.039 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales