Avaya Configuring Integrated IP Security Manuel d'utilisateur télécharger pdf (Page 39)

Configuring IPsec

304111-A Rev 00

3-3

Create and configure a different NPK for each secure router on your network. The

NPK should be different on every router because, if an NPK is compromised, the

security gateway for the router is compromised. If the same NPK is used for all

secure routers, the entire network could be compromised.

Generating and Using NPKs

You create NPKs using the Technician Interface secure shell. You must then enter

the same NPKs into the Site Manager NPK parameter for that router. For details,

see the note later in this section.

The following steps summarize how an NPK is used. Detailed steps for using

NPKs appear later in this chapter (see “Entering an NPK and a Seed for

Encryption” on page 3-4).

You are responsible for creating NPKs. The NPK value should be a random

number (16 hexadecimal digits). Use a unique NPK for each router.

Enter an NPK value in the router NVRAM, using the secure shell of the

Technician Interface. Do this for each secure router.

Enter the same NPK value in the Site Manager IPsec Node Protection Key

parameter for the router that you are configuring.

Generating an NPK

To generate an NPK, use a method available at your site to create random 16-digit

hexadecimal numbers.

Caution:

Be very careful to protect all files where NPKs are stored. You

should store your NPKs on removable media (for example, diskettes) and keep

the media in a secure location.

Note:

You can use the NPK Key Manager to generate NPKs. The NPK Key

Manager is available from the WEP Key Manager. To access it, open the main

window in Site Manager and choose Tools > WEP Key Manager > NPK

Manager. During IPsec processing, you can manually enter the same NPKs in

the Technician Interface. For detailed information, see Configuring Data

Encryption Services.

1 2 ... 34 35 36 37 38 39 40 41 42 43 44 ... 71 72

Pas de commentaire

Avaya Configuring Integrated IP Security Manuel d'utilisateur Page 39