Cisco 7100 Series Especificaciones Pagina 42
- Pagina / 112
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
Step 3—Configuring Encryption
Cisco 7100 Series VPN Configuration Guide
3-12
IPSec is a framework of open standards, developed by the Internet Engineering Task Force
(IETF), that provides data confidentiality, data integrity, and data authentication between
participating peers. IPSec provides these security services at the IP layer; it uses IKE to
handle negotiation of protocols and algorithms based on local policy, and to generate the
encryption and authentication keys to be used by IPSec. IPSec can be used to protect one
or more data flows between a pair of hosts, between a pair of security gateways,or between
a security gateway and a host.
IKE is a hybrid security protocol that implements Oakley and SKEME key exchanges
inside the Internet Security Association & Key Management Protocol (ISAKMP)
framework. While IKE can be used with other protocols, its initial implementation is with
the IPSec protocol. IKE provides authentication of the IPSec peers, negotiates IPSec
security associations, and establishes IPSec keys.IPSec can be configured without IKE, but
IKE enhances IPSec by providing additional features, flexibility, and ease of configuration
for the IPSec standard.
CA interoperability is provided by the ISM in support of the IPSec standard. It permits
Cisco IOS devices and CAs to communicate so that your Cisco IOS device can obtain and
use digital certificates from the CA. Although IPSec can be implemented in your network
without the use of a CA, using a CA provides manageability and scalability for IPSec.
For the ISM in slot 5 of Cisco 7100 series routers to provide encryption services on the
GRE tunnel configured in the “Step 1—Configuring the Tunnel” section on page 3-4, you
must complete the following steps:
1 Configuring IKE Policies (Creating policies)
2 Configuring IPSec (Creating access lists and transform sets)
3 Configuring Crypto Maps (Creating crypto maps and assigning maps to interfaces)
Optionally, you can configure CA interoperability. This guide does not explain how to
configure CA interoperability on your Cisco 7100 series router. Refer to the “IP Security
and Encryption” part of the Security Configuration Guide and the Security Command
Reference publications for detailed information on configuring CA interoperabilty.
- Cisco 7100 Series VPN 1
- Configuration Guide 1
- Preface vii 3
- Audience 4
- Organization 5
- Related Documentation 6
- Preface xi 7
- Conventions 8
- Cisco Connection Online 9
- Documentation CD-ROM 10
- Using Cisco IOS Software 11
- Getting Help 12
- Finding Command Options 13
- • controller t1 1 13
- Understanding Command Modes 18
- Summary of Main Command Modes 19
- Router(config-if)# 20
- Router(config-subif)# 20
- Saving Configuration Changes 21
- Saving Configuration Changes 22
- Before You Begin 23
- Considerations 25
- Before You Begin 2-5 27
- Assumptions 29
- Intranet VPN Business 31
- Scenario 31
- Scenario Description 32
- Step 1—Configuring the Tunnel 34
- Step 1—Configuring the Tunnel 35
- Step 3—Configuring Encryption 41
- Configuring IKE Policies 43
- Creating Policies 44
- • RSA signatures method: 45
- Configuring Preshared Keys 46
- Verifying IKE Policies 48
- Configuring IPSec 49
- Creating Crypto Access Lists 51
- Verifying Crypto Access Lists 51
- Defining Transform Sets 52
- Step 3—Configuring Encryption 54
- Verifying Transform Sets 55
- Creating Crypto Map Entries 58
- Verifying Crypto Map Entries 59
- To verify the configuration: 65
- Extranet VPN Business 73
- 67890 address 172.17.2.4 83
- Tunnel mode 88
- Transport mode 88
- Configuring Crypto Maps 89
- Configuring Crypto Maps 93
Relacionado con productos y manuales para Redes Cisco 7100 Series
Redes Cisco VPN 3000 Manual de usuario
(25 paginas)
(25 paginas)
Redes Cisco MCS 7835 Series Manual de usuario
(9 paginas)
(9 paginas)
Redes Cisco 1802W Manual de usuario
(40 paginas)
(40 paginas)
Redes Cisco 4500M Guía de instalación
(32 paginas)
(32 paginas)
Redes Cisco 7120-4T1 - 7120 Router Especificaciones
(24 paginas)
(24 paginas)
Redes Cisco VPN 3000 Guía de usuario
(502 paginas)
(502 paginas)
Redes Cisco EF3116 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco 826 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco 1861 Manual de usuario
(13 paginas)
(13 paginas)
Redes Cisco TES301 Manual de usuario
(52 paginas)
(52 paginas)
Redes Cisco MGBSX1 Manual de usuario
(16 paginas)
(16 paginas)
Redes Cisco 1005 - 1005 Router Manual de usuario
(10 paginas)
(10 paginas)
Redes Cisco PA-2FE-TX Especificaciones
(60 paginas)
(60 paginas)
Redes Cisco 880 Series Manual de usuario
(18 paginas)
(18 paginas)
Redes Cisco 2520-RF - 2520 Router Especificaciones
(116 paginas)
(116 paginas)
Redes Cisco EPC3825 Manual de usuario
(8 paginas)
(8 paginas)
Redes Cisco DPC3008 Guía de usuario
(44 paginas)
(44 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.067 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales