Avaya Configuring IPsec Services Manuel d'utilisateur Page 29
- Page / 122
- Table des matières
- MARQUE LIVRES
Noté. / 5. Basé sur avis des utilisateurs
Overview of IPsec
308630-15.1 Rev 00
1-11
To specify the protocol criterion, you must provide the numeric value assigned to
the protocol for use over the Internet. You can specify only a single protocol value
for each policy. The protocol number is represented in the 1-byte protocol field in
an IP packet header.
For a list of protocol numbers, see Appendix E, “
Protocol Numbers.” To obtain
the most recent list of the numeric values assigned to various protocols, see the
Internet Assigned Numbers Authority (IANA) Web site at:
http://www.iana.org
The direct path to the list of legal values that you can specify for an IPsec policy
protocol criterion is:
http://www.iana.org/assignments/protocol-numbers
Security Associations
A security association (SA) is a relationship in which two peers share the
necessary information to securely protect and unprotect data. An IPsec SA is
uniquely identified by an IP destination address, security parameter index (SPI),
and security protocol identifier (for example, ESP in tunnel mode).
An IPsec policy determines which packets are handled and which IPsec security
service (for example, confidentiality) is applied to the packets. You can apply one
or more IPsec security services.
SAs themselves must be created and shared in a secure manner. To create SAs,
you can use one of two methods:
• Use the automated security negotiation process provided by the Internet Key
Exchange (IKE) protocol. (IKE is the recommended method.)
• Manually configure the sending and receiving devices with a shared secret. A
shared secret is a unique security identifier.
Automated Security Associations Using IKE
Internet Key Exchange is an automated protocol to establish security associations
over the Internet. (IKE is also referred to as the Internet Security Association Key
Management Protocol with Oakley Key Determination, or ISAKMP/Oakley.) IKE
negotiates, establishes, modifies, and deletes security associations.
- Configuring IPsec Services 1
- Trademarks 2
- Restricted Rights Legend 2
- Statement of Conditions 2
- Contents 5
- 308630-15.1 Rev 00 vii 7
- 308630-15.1 Rev 00 ix 9
- 308630-15.1 Rev 00 xi 11
- Before You Begin 13
- Text Conventions 14
- Acronyms 15
- Hard-Copy Technical Manuals 16
- How to Get Help 17
- Chapter 1 19
- Overview of IPsec 19
- About IPsec 20
- Supported Routers 21
- Supported WAN Protocols 21
- IPsec Services 22
- How IPsec Works 23
- IPsec Tunnel Mode 24
- IPsec Elements 25
- Security Gateways 26
- Security Policies 26
- Security Associations 29
- Security Protocols 33
- Performance Considerations 35
- Chapter 2 37
- Installing IPsec 37
- Installing the IPsec Software 38
- Securing Your Site 40
- Securing Your Configuration 40
- Creating and Using NPKs 41
- Caution: 42
- Changing an NPK 43
- Monitoring NPKs 44
- Chapter 3 45
- Starting IPsec 45
- Creating Policies 46
- Specifying an Action 47
- Policy Considerations 47
- (continued) 48
- Automated SA Creation 51
- About Manual SA Creation 53
- Chapter 4 57
- Customizing IPsec 57
- Editing a Policy 58
- Adding a Policy 59
- Reordering Policies 62
- Modifying Automated SAs (IKE) 64
- Modifying Manual SAs 65
- Disabling IPsec 67
- Appendix A 69
- Site Manager Parameters 69
- Node Protection Key Parameter 70
- IPsec Parameters 71
- IPsec Policy Parameters 72
- Appendix B 81
- Definitions of k Commands 81
- Appendix C 83
- Configuration Examples 83
- 192.32.10.0 85
- 192.32.20.0 86
- Manual SA Policy Examples 87
- RTR1 92
- RTR2 92
- RTR3 95
- RTR4 95
- Appendix D 99
- IPsec Terminology 100
- Configuration Considerations 101
- Feature Comparison Summary 102
- 308630-15.1 Rev 00 103
- BayRS Tools 104
- Contivity Tools 104
- Symptoms You May See 105
- Protocol Numbers 107
- Appendix E 107
Produits connexes et manuels pour Manuels des logiciels Avaya Configuring IPsec Services
Manuels des logiciels Avaya DMC DECT Fundamentals - Communications Server 1000 Manuel d'utilisateur
(340 pages)
(340 pages)
Manuels des logiciels Avaya Configuring SNMP, BOOTP, DHCP, and RARP Services Manuel d'utilisateur
(108 pages)
(108 pages)
Manuels des logiciels Avaya Configuring Interface and Router Redundancy Manuel d'utilisateur
(72 pages)
(72 pages)
Manuels des logiciels Avaya Quick-Starting Routers and BNX Platforms Manuel d'utilisateur
(126 pages)
(126 pages)
© 2020, manymanuals.fr. Tous droits réservés | 0.039 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Commentaires sur ces manuels