Avaya Configuring IP Security Services Bedienungsanleitung Seite 52
- Seite / 100
- Inhaltsverzeichnis
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
Configuring IPsec Services
3-8
304111-B Rev 00
Creating Security Associations
Security associations enable you to provide bidirectional protection for data
packets traveling between two routers. Each SA establishes security for data
passing in a single direction. A pair of SAs are created, either automatically or
manually, for any IPsec policy configured on a security gateway. Each SA
includes security information such as algorithm and keys.
You should use automated SA creation for greater security and decreased
configuration management overhead.
About Automated SA Creation
IKE creates automated SAs, based on the proposals you configure for an IPsec
policy in Site Manager. Each proposal specifies an encryption and/or
authentication transform for the automated SA. You do not need to specify keys
for automated SAs, because IKE creates them dynamically. You can configure up
to four proposals for a policy, in order of preference. IKE will negotiate an
automated SA, based on the first proposal that matches one configured on the
remote security gateway.
About Manual SA Creation
To protect (encrypt or authenticate) data packets leaving the local IPsec interface,
create a Protect SA and link it to a Protect outbound policy. To decrypt or
authenticate incoming packets at the local IPsec interface, create an Unprotect SA.
(The Unprotect SA does not need to be linked to a policy.) Then, do the same for
the IPsec interface on the remote router.
The cipher and integrity algorithms and keys that you specify in SAs must be
identical on both ends of a connection. You must select either the cipher or the
integrity service or both within the Protect and Unprotect SA parameters. For
example, the cipher key in a Protect SA on the local IP interface must match the
cipher key in the Unprotect SA on the remote router IP interface.
Note:
Manual SAs must be configured to encrypt, authenticate, or both. Site
Manager does not allow you to create an SA if both the Cipher Algorithm and
the Integrity Algorithm parameters are set to None.
- Configuring IPsec 1
- Services 1
- Trademarks 2
- Restricted Rights Legend 2
- Statement of Conditions 2
- Contents 5
- 304111-B Rev 00 vii 7
- 304111-B Rev 00 ix 9
- 304111-B Rev 00 xi 11
- Before You Begin 13
- Text Conventions 14
- Acronyms 15
- Configuring IPsec Services 16
- How to Get Help 17
- Overview of IPsec 19
- Chapter 1 19
- About IPsec 20
- IPsec Services 20
- How IPsec Works 21
- IPsec Protection 22
- Elements of IPsec 23
- Security Gateways 25
- Security Policies 26
- Inbound Policies 27
- Outbound Policies 27
- Policy Criteria Specification 28
- Security Associations 29
- Manual Security Associations 30
- Security Protocols 33
- Authentication Header 34
- Perfect Forward Secrecy 35
- Supported Routers 36
- Supported WAN Protocols 36
- Chapter 2 37
- Getting Started With IPsec 37
- Upgrading Router Software 38
- Installing the IPsec Software 38
- 304111-B Rev 00 39
- Securing Your Site 40
- Securing Your Configuration 40
- Random Number Generator (RNG) 41
- Generating NPKs 41
- Caution: 42
- Changing an NPK 44
- Monitoring NPKs 44
- Chapter 3 45
- Creating Policies 46
- Specifying an Action 47
- Policy Considerations 47
- Creating an Outbound Policy 48
- Creating an Inbound Policy 50
- About Automated SA Creation 52
- About Manual SA Creation 52
- Disabling IPsec 57
- Appendix A 59
- Site Manager Parameters 59
- Enabling IPsec Parameters 60
- IPsec Policy Parameters 61
- Appendix B 69
- Definitions of k Commands 69
- Appendix C 71
- Configuration Examples 71
- RTR4 Subnet 192.32.30.0 74
- Manual SA Policy Examples 75
- RTR1 and RTR2 78
- RTR1 79
- RTR2 79
- RTR3 82
- RTR4 82
- Appendix D 87
- Protocol Numbers 87
Verwandte Produkte und Handbücher für Software Avaya Configuring IP Security Services
Software Avaya Business Communications Manager - Call Detail Recording System Bedienungsanleitung
(70 Seiten)
(70 Seiten)
Software Avaya 7-10.xx Bedienungsanleitung
(114 Seiten)
(114 Seiten)
Software Avaya FireWall-1 Bedienungsanleitung
(40 Seiten)
(40 Seiten)
Software Avaya 1010/1020 Bedienungsanleitung
(32 Seiten)
(32 Seiten)
Software Avaya Call Center Bedienungsanleitung
(274 Seiten)
(274 Seiten)
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.054 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern