beautypg.com

H3C Technologies H3C Intelligent Management Center User Manual

Page 72

background image

54

[VPNgateway-isp-vpn] accounting ppp radius-scheme vpn

[VPNgateway-isp-vpn] ip pool 1 200.1.1.2 200.1.1.31

[VPNgateway-isp-vpn] quit

[VPNgateway] interface virtual-template 1

[VPNgateway-Virtual-Template1] ppp authentication-mode chap domain vpn

[VPNgateway-Virtual-Template1] ip address 200.1.1.1 255.255.255.0

[VPNgateway-Virtual-Template1] remote address pool 1

[VPNgateway-Virtual-Template1] quit

[VPNgateway] l2tp enable

[VPNgateway] l2tp-group 1

[VPNgateway-l2tp1] allow l2tp virtual-template 1 remote inode

[VPNgateway-l2tp1] tunnel password simple 111111

[VPNgateway-l2tp1] quit

[VPNgateway] ike proposal 1

[VPNgateway-ike-proposal-1] authentication-method pre-share

[VPNgateway-ike-proposal-1] authentication-algorithm md5

[VPNgateway-ike-proposal-1] encryption-algorithm des-cbc

[VPNgateway-ike-proposal-1] dh group1

[VPNgateway-ike-proposal-1] sa duration 86400

[VPNgateway-ike-proposal-1] quit

[VPNgateway] ike peer vpnpeer

[VPNgateway-ike-peer-vpnpeer] exchange-mode main

[VPNgateway-ike-peer-vpnpeer] id-type ip

[VPNgateway-ike-peer-vpnpeer] remote-address 100.1.1.200 100.1.1.250

[VPNgateway-ike-peer-vpnpeer] pre-shared-key simple 123

[VPNgateway-ike-peer-vpnpeer] nat traversal

[VPNgateway-ike-peer-vpnpeer] quit

[VPNgateway] ipsec proposal vpnpro

[VPNgateway-ipsec-proposal-vpnpro] encapsulation-mode tunnel

[VPNgateway-ipsec-proposal-vpnpro] transform ah

[VPNgateway-ipsec-proposal-vpnpro] ah authentication-algorithm md5

[VPNgateway-ipsec-proposal-vpnpro] quit

[VPNgateway] acl number 3000

[VPNgateway-acl-adv-3000] rule 0 permit ip

[VPNgateway-acl-adv-3000] quit

[VPNgateway] ipsec policy vpnpolicy 1 isakmp

[VPNgateway-ipsec-policy-isakmp-vpnpolicy-1] ike-peer vpnpeer

[VPNgateway-ipsec-policy-isakmp-vpnpolicy-1] proposal vpnpro

[VPNgateway-ipsec-policy-isakmp-vpnpolicy-1] security acl 3000

[VPNgateway-ipsec-policy-isakmp-vpnpolicy-1] pfs dh-group1

[VPNgateway-ipsec-policy-isakmp-vpnpolicy-1] quit

[VPNgateway] interface GigabitEthernet 0/1

[VPNgateway-GigabitEthernet0/1] ipsec policy vpnpolicy

See also other documents in the category H3C Technologies Safety: