这是配置情况:
188.acl advanced 3002
189. description 新农合
190. rule 0 permit ip source 10.42.224.0 0.0.0.255 destination 10.1.81.64 0.0.0.64
263.ipsec transform-set GE1/0/10_IPv4_1
264. esp encryption-algorithm aes-cbc-128
265. esp authentication-algorithm md5
266.#
267.ipsec policy GE1/0/10 1 isakmp
268. transform-set GE1/0/10_IPv4_1
269. security acl 3002
270. local-address 219.139.xx.xxx
271. remote-address ***.***
272. ike-profile GE1/0/10_IPv4_1
267.ipsec policy GE1/0/10 1 isakmp
268. transform-set GE1/0/10_IPv4_1
269. security acl 3002
270. local-address 219.139.xx.xxx
271. remote-address ***.***
272. ike-profile GE1/0/10_IPv4_1
280.ike profile GE1/0/10_IPv4_1
281. keychain GE1/0/10_IPv4_1
282. dpd interval 5 on-demand
283. exchange-mode aggressive
284. local-identity fqdn xnh@yax.hspt
285. match remote identity fqdn xnh@centre
286. match local address GigabitEthernet1/0/10
287. proposal 65535
288.#
289.ike proposal 65535
290. encryption-algorithm aes-cbc-128
291. dh group2
292. authentication-algorithm md5
293. sa duration 3600
294. description GE1/0/10_IPv4_1
295.#
296.ike keychain GE1/0/10_IPv4_1
297. match local address GigabitEthernet1/0/10
298. pre-shared-key hostname xnh@centre key cipher $c$3$afJjI1moUk +gNrymHhklIQvBPPESZdOYhg5EyQ==
参考官网配置手册
答案来自于 狗剩
该案例暂时没有网友评论
✖
案例意见反馈
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作