Manual Key Tunnel Mode with DES (Side # 1)
Posted by , Last modified by Daniel Lizaola on 22 November 2017 01:35 PM

Configuration Description

The command sequence below defines a VPN Tunnel that uses DES to route traffic from Side #1 (192.168.1.0) to Side #2 (192.168.2.0).

NOTE: You must replace X.X.X.X in the template with the IP address for Side #2.

NOTE: You must purchase the appropriate software license for your SmartNode to support VPN service. To see the current licenses active for your SmartNode, execute the "show license" command.

Command Sequence to copy, edit and paste

profile ipsec-transform DES
esp-encryption des-cbc 64

profile ipsec-policy-manual VPN_DES
use profile ipsec-transform DES
session-key inbound esp-encryption A242353012531297
session-key outbound esp-encryption B242353012531297
spi inbound esp 1111
spi outbound esp 2222

# SET IP ADDRESS of SIDE #2
peer X.X.X.X
mode tunnel

profile acl VPN_Out
permit ip 192.168.1.0 0.0.0.255 192.168.2.0 0.0.0.255 ipsec-policy VPN_DES
permit ip any any

profile acl VPN_In
permit esp any any
permit ah any any
permit ip 192.168.2.0 0.0.255.255 192.168.1.0 0.0.0.255
permit ip any any

context ip
interface eth0
use profile acl VPN_In in
use profile acl VPN_Out out

context ip router
route 192.168.2.0 255.255.255.0 eth0

(8768 vote(s))
Helpful
Not helpful

Comments (0)
Post a new comment
 
 
Full Name:
Email:
Comments:
CAPTCHA Verification 
 
Please enter the text you see in the image into the textbox below (we use this to prevent automated submissions).