7 application examples, Example, Routeros router to routeros router – Allied Telesis AT-WR4500 User Manual

AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers

195

RouterOS v3 Configuration and User Guide

Example

To flush all the SAs installed:

[admin@AT-WR4562] ip ipsec installed-sa> flush
[admin@AT-WR4562] ip ipsec installed-sa> print
[admin@AT-WR4562] ip ipsec installed-sa>

8.8.7

Application Examples

RouterOS Router to RouterOS Router

[Router2]
1.0.0.2

[Router1]
1.0.0.1

IP Network

10.1.0.0/24

10.2.0.0/24

1.0.0.0/24

Figure 30: transport mode example using ESP with automatic keying

for Router1

[admin@Router1] > ip ipsec policy add sa-src-address=1.0.0.1 sa-dst-address=1.0.0.2 \
\... action=encrypt
[admin@Router1] > ip ipsec peer add address=1.0.0.2 \
\... secret="gvejimezyfopmekun"

for Router2

[admin@Router2] > ip ipsec policy add sa-src-address=1.0.0.2 sa-dst-address=1.0.0.1 \
\... action=encrypt
[admin@Router2] > ip ipsec peer add address=1.0.0.1 \
\... secret="gvejimezyfopmekun"

Transport mode example using ESP with automatic keying and automatic policy generating on Router 1
and static policy on Router 2

for Router1

[admin@Router1] > ip ipsec peer add address=1.0.0.0/24 \
\... secret="gvejimezyfopmekun" generate-policy=yes

for Router2

[admin@Router2] > ip ipsec policy add sa-src-address=1.0.0.2 sa-dst-address=1.0.0.1 \
\... action=encrypt
[admin@Router2] > ip ipsec peer add address=1.0.0.1 \
\... secret="gvejimezyfopmekun"

tunnel mode example using AH with manual keying