H3c-technologies H3C SecPath F1000-E Manual de usuario Pagina 160
- Pagina / 182
- Tabla de contenidos
- SOLUCIÓN DE PROBLEMAS
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
32
[inbound ESP SAs]
spi: 1974923076 (0x75b6ef44)
proposal: ESP-ENCRYPT-DES ESP-AUTH-MD5
sa duration (kilobytes/sec): 1843200/3600
sa remaining duration (kilobytes/sec): 1843199/3503
max received sequence-number: 5
anti-replay check enable: Y
anti-replay window size: 32
udp encapsulation used for nat traversal: N
[outbound ESP SAs]
spi: 2364632148 (0x8cf16c54)
proposal: ESP-ENCRYPT-DES ESP-AUTH-MD5
sa duration (kilobytes/sec): 1843200/3600
sa remaining duration (kilobytes/sec): 1843199/3503
max sent sequence-number: 6
udp encapsulation used for nat traversal: N
On Device B, ping the IP address of the interface on Device A that connects to the branch.
[DeviceB] ping -a 192.168.1.1 172.17.17.1
PING 172.17.17.1: 56 data bytes, press CTRL_C to break
Reply from 172.17.17.1: bytes=56 Sequence=1 ttl=255 time=15 ms
Reply from 172.17.17.1: bytes=56 Sequence=2 ttl=255 time=10 ms
Reply from 172.17.17.1: bytes=56 Sequence=3 ttl=255 time=10 ms
Reply from 172.17.17.1: bytes=56 Sequence=4 ttl=255 time=5 ms
Reply from 172.17.17.1: bytes=56 Sequence=5 ttl=255 time=4 ms
--- 172.17.17.1 ping statistics ---
5 packet(s) transmitted
5 packet(s) received
0.00% packet loss
round-trip min/avg/max = 4/8/15 ms
Similarly, you can view the information on Device A. (Omitted)
Example for Configuring IPsec for RIPng
NOTE:
For RIPng, OSPFv3, and IPv6 BGP, IPsec is configured similarly. For detailed configuration, refer to
RIPn
g
Configuration, OSPFv3 Configuration
and
IPv6 BGP Configuration
in
IP Routing Volume
.
Network requirements
As shown in Figure 8, Device B connects Device A and Device C. These Devices learn IPv6 routing
information through RIPng.
• RIPng packets between two devices are transmitted through an IPsec tunnel.
• The security protocol to be used is ESP, encryption algorithm is DES, and authentication algorithm
is SHA1-HMAC-96.
- Table of Contents 1
- Portal Configuration 2
- Portal System Components 3
- Portal Authentication Modes 4
- Configuration Prerequisites 8
- RADIUS Configuration 12
- Firewall Web 12
- Configuration Manual 12
- Portal Packets 13
- 2. Probe parameters 15
- Logging Off Portal Users 17
- Step2 Configure Device 21
- DHCP Configuration 24
- Functions 27
- Information Synchronization 34
- Configuration considerations 35
- Troubleshooting Portal 42
- ALG Configuration 45
- 2. Authenticating the user 46
- Enabling ALG 47
- ALG Configuration Examples 47
- # Enable ALG for NBT 50
- # Configure NAT 50
- RSH Configuration 52
- RSH Configuration Example 53
- SSH2.0 Configuration 57
- Version negotiation 58
- Authentication 58
- Session request 59
- Interaction 59
- SSH Connection Across VPNs 60
- Public Key Commands 61
- Security Volume 61
- Interface Commands 62
- System Volume 62
- Configuring an SSH User 63
- SFTP Service 80
- Working with SFTP Files 83
- Displaying Help Information 84
- SSL Configuration 91
- SSL Configuration Task List 92
- Configuration Procedure 93
- Troubleshooting SSL 97
- Web Filtering Configuration 100
- Java Blocking 101
- ActiveX Blocking 101
- Configuring Web Filtering 102
- Network requirements 103
- Configuration procedure 104
- Invalid Use of Wildcard 107
- Invalid Blocking Suffix 107
- Public Key Configuration 109
- Connection Limit Overview 118
- Verification 121
- Symptom 121
- Analysis 121
- Solution 122
- Contents 123
- Firewall configuration 124
- IPsec Configuration 129
- Implementation of IPsec 130
- Basic Concepts of IPsec 130
- Encapsulation modes 131
- IPsec Tunnel Interface 132
- Configuring IPsec 134
- Implementing ACL-Based IPsec 135
- Mirror image ACLs 137
- Protection modes 138
- Configuring an IPsec Policy 139
- NOTE: 143
- Configuring an IPsec Profile 148
- Tunneling Commands 150
- IP Services Volume 150
- IPsec Configuration Examples 152
- 2. Configure Device B 153
- Configuation procedure 157
- 3. Configure Device C 162
- IKE Configuration 165
- Operation of IKE 166
- IKE Configuration Task List 167
- Gateway 168
- Configuring an IKE Proposal 168
- Configuring an IKE Peer 169
- Setting Keepalive Timers 171
- Configuring a DPD 172
- IKE Configuration Examples 173
- Traversal 175
- Troubleshooting IKE 180
- Proposal Mismatch 181
- ACL Configuration Error 181
Relacionado con productos y manuales para La Seguridad H3c-technologies H3C SecPath F1000-E
(95 paginas)
(17 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.049 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales