2 configuration notes, 2 configuration notes -43, Configuration notes – Panasonic 8000 User Manual

Nortel Secure Router 8000 Series
Troubleshooting - VAS__________

2 IPSec and IKE troubleshooting

Figure 2-12 Networking diagram of configuring IPSec

Router

A

Pos1/0/1

,^■^02.38.163.1

IPSec

10.1.1.1

10.1.1.2

«

PC

A

Pos2/0/1

202.38.162.1.

Router

B

GRE

(Q>

10.1.2.1

10.1.2.2

t

PC

B

The networking environment is as follows:

•

Create a GRE tunnel between Router A and Router B.

•

Create an IPSec tunnel between Router A and Router B to protect packets forwarded

through the GRE tunnel.

•

Specify the data flow between subnetwork segments 10.1.1.x and 10.1.2.x to pass the
GRE tunnel.

•

Set up IPSec SAs in ISAKMP mode.

2.6.2 Configuration notes

Item

Sub-item

Description

Configuring the
GRE tunnel

Configure the tunnel type

Configure a GRE tunnel.

Configure the source IP
address of the tunnel

For configuration notes, see the section
about GRE troubleshooting in

Nortel

Secure Router 8000 Series

Troubleshooting - VPN

(NN46240-710).

Configure the destination
IP address of the tunnel

For configuration notes, see the section
about GRE troubleshooting in

Nortel

Secure Router 8000 Series

Troubleshooting - VPN

(NN46240-710).

Configuring the

ACL

Configure the ACL number

Use the advanced ACL, ranging from
3000 to 3999.

Configure the protocol ID
specified in the ACL

The protocol ID of GRE.

Configure the source and
destination addresses
specified in ACL rules

The source and destination IP addresses of
the GRE tunnel.

Configure other items in

ACL rules

Not required.

Issue 01.01 (30 March 2009)

Nortel Networks Inc.

2-43