Cisco Asa ISAKMP Phase1: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) |
||
| Zeile 16: | Zeile 16: | ||
=Copy and Paste= | =Copy and Paste= | ||
<pre> | <pre> | ||
| + | configure terminal | ||
crypto ikev1 policy 10 | crypto ikev1 policy 10 | ||
authentication pre-share | authentication pre-share | ||
Version vom 16. Februar 2016, 11:04 Uhr
ISAKMP policy
ciscoasa(config)# crypto ikev1 policy 10
Authentifizierung mit PSK
- ciscoasa(config-ikev1-policy)# authentication pre-share
Verschlüsselung
- ciscoasa(config-ikev1-policy)# encryption aes-256
Hash Algorithmus
- ciscoasa(config-ikev1-policy)# hash md5
Diffie-Hellmann-Gruppe
- ciscoasa(config-ikev1-policy)# group 5
Lifetime
- ciscoasa(config-ikev1-policy)# lifetime 28800
Enables ISAKMP on the interface if-outside
- ciscoasa(config)# crypto ikev1 enable if-outside
Copy and Paste
configure terminal crypto ikev1 policy 10 authentication pre-share encryption aes-256 hash md5 group 5 lifetime 28800 crypto ikev1 enable if-outside