Got it

IPSEC VPN configuration on AR

Latest reply: Dec 27, 2018 07:30:39 932 6 9 0 0

acl number 3000  
 rule 3000 permit ip source 172.16.1.0 0.0.0.255 destination 192.168.1.0 0.0.0.25

#
ipsec proposal ok
 esp authentication-algorithm sha2-512
 esp encryption-algorithm aes-256
#
ike proposal 10
 encryption-algorithm aes-cbc-256
 dh group5
 authentication-algorithm md5
 prf hmac-md5
#
ike peer site2 v1
 exchange-mode aggressive
 pre-shared-key simple cisco
 ike-proposal 10
 remote-address 202.100.100.100
#
ipsec policy ok-policy 10 isakmp
 security acl 3000
 ike-peer site2
 proposal ok
#
aaa 
 authentication-scheme default
 authorization-scheme default
 accounting-scheme default
 domain default 
 domain default_admin 
 local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$
 local-user admin service-type http
#
firewall zone Local
 priority 15
#
interface GigabitEthernet0/0/0
 ip address 10.10.10.20 255.255.255.0 
 ipsec policy ok-policy

  • x
  • convention:

yiyi0519
Created Dec 21, 2018 08:40:16

it is like the configuration of the USG, but the USG need to add the security policy.
View more
  • x
  • convention:

Hain
Created Dec 21, 2018 08:58:09

I come to the forum to see technical posts every day, sooner or later I will become an expert.IPSEC VPN configuration on AR-2825949-1
View more
  • x
  • convention:

Yolanda_617
Created Dec 21, 2018 09:36:27

Very helpful
View more
  • x
  • convention:

3li
Created Dec 21, 2018 14:58:17

Need more tools
View more
  • x
  • convention:

user_2915719
Created Dec 22, 2018 05:51:27

Do we configure like this on both ends and they will work?
View more
  • x
  • convention:

dagui
Created Dec 27, 2018 07:30:39

local-user admin password cipher %$%$K8m.Nt84DZ}e#<0`8bmE3Uw}%$%$ local-user admin service-type http Can you provide a more detailed explanation?
View more
  • x
  • convention:

Comment

You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.
Information Protection Guide
Thanks for using Huawei Enterprise Support Community! We will help you learn how we collect, use, store and share your personal information and the rights you have in accordance with Privacy Policy and User Agreement.