beautypg.com

Brocade Communications Systems RFS6000 User Manual

Page 246

background image

244

Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide

53-1001931-01

Global Configuration commands

5

RFController(config)#crypto isakmp policy 100

RFController(config-crypto-isakmp)#encryption aes

RFController(config-crypto-isakmp)#hash sha

RFController(config-crypto-isakmp)#authentication pre-share

RFController(config-crypto-isakmp)#group 5

RFController(config-crypto-isakmp)#lifetime 9496

d. Create and configure IPSec an transform set.

RFController(config)#crypto ipsec transform-set TFSET ah-sha-hmac esp-aes

esp-sha-hmac

RFController(config-crypto-ipsec)#mode tunnel

e. Create and configure a crypto map.

RFController(config)#crypto map THIRDMAP 435 isakmp

RFController(config-crypto-map)#set peer 11.1.1.10

RFController(config-crypto-map)#match address 150

RFController(config-crypto-map)#set transformset TFSET

RFController(config-crypto-map)#set security-association lifetime seconds 3600

f.

Associate the crypto map with a VLAN interface.

RFController(config)#interface vlan1

RFController(config-if)#ip address 15.1.1.20/24

RFController(config-if)#crypto map THIRDMAP

RFController(config-if)#interface vlan2100

RFController(config-if)#ip address 13.1.1.20/24

RFController(config-if)#ip route 0.0.0.0/0 15.1.1.2

This manual is related to the following products:
See also other documents in the category Brocade Communications Systems Hardware: