Header
Home | Set as homepage | Add to favorites
  Search the Site     » Advanced Search
Sections
Syndication


Blogroll:

||||| ALL Cisco-Network ARTICLES |||||  
CCIE Journey,
The CCIE Journey,

Home : CCSP-Cisco Certified Security Professional : Configure the IPSec

Configure the IPSec

Nov 22,2009 by alperen

small font medium font large font
image

Configure the IPSec

The Client Manager displays the Configuration | Quick | IPSec screen.

This screen lets you configure the IPSec parameters, enabling the VPN 3002 to connect to the VPN Concentrator or to other IPSec security gateways, such as the Cisco PIX firewall or Cisco IOS routers. Figure 15-18 shows the IPSec configuration screen.

Click To expand
Figure 15-18: IPSec configuration screen

The Remote Server field is for the IP address or host name of the VPN Concentrator to which this VPN 3002 hardware client connects. If a host name is used, a DNS server must be available to resolve the name.

As mentioned previously, NAT-T is the default, but you can check the IPSec over TCP box to use TCP. The TCP feature must also be enabled on the VPN Concentrator to which this VPN 3002 connects.

Specify the IPSec over TCP port number; only one port number can be specified. The VPN 3002 port must also be configured on the VPN Concentrator to which this VPN 3002 connects.

The Use Certificate box specifies digital certificates for authentication. With digital certificates, you needn’t enter a group name and group password.

Digital Certificates

You have two Select a Certificate Transmission options:

  • Entire certificate chain—to send the peer the identity certificate and all issuing certificates, including the root certificate and any subordinate CA certificates.

  • Identity certificate only—to send the peer only the identity certificate.

Preshared Keys

The following information has to be consistent with that configured for this VPN 3002 on the central-site VPN Concentrator.

  • Group Name field—unique name for this group (up to 32 characters, case-sensitive).

  • Group Password field—unique password for this group (4 to 32 characters, case-sensitive). The field displays only asterisks.

  • Group Verify field—reenter the group password.

  • User Name field—unique name for this user in the group (up to 32 characters, case-sensitive).

  • User Password field—unique password for this user (4 to 32 characters, case-sensitive). The field displays only asterisks.

  • User Verify field—reenter the user password.


241 times read

Related news
» LAN-to-LAN Networks with Digital Certificates
by alperen posted on Dec 31,2009
» IPSec Backup Servers
by alperen posted on Nov 30,2009
» VPN Concentrator and Certificates
by alperen posted on Nov 15,2009
» IPSec over UDP
by alperen posted on Dec 31,2009
» Creating or Modifying Other Groups
by alperen posted on Nov 14,2009
Did you enjoy this article?
1 2 3 4 5
(total 0 votes)

comment Comments (0 posted) 

More Top News
CCSP-Cisco Certified Security Professional
arrow Cisco SAFE Implementation
arrow Preparation Documents
arrow Exam Topics
arrow Skills Required for the Exam
arrow Cisco SAFE Implementation Questions and Answers
arrow Access Control Lists Cisco
arrow Access List Basics
arrow Standard Access Lists
arrow Verifying ACLs
arrow Extended Access Lists
arrow TCP Access Lists
arrow UDP Access Lists
arrow ICMP Access Lists
arrow Named Access Lists
arrow Signature and Alarm Management Review
arrow Signature and Alarm Management Review Questions and Answers
arrow Event Viewer
arrow Managing Alarms
arrow Event Viewer Customization
arrow Preference Settings
arrow Sensor Installation
arrow Connecting to Your Network Sensor Appliance
arrow Sensor Bootstrap
arrow Sensor Installation and Configuration Review
arrow Sensor Installation and Configuration Questions and Answers
arrow Signature and Alarm Management
arrow CIDS Signatures
arrow Signature Series
arrow Signature Implementations
arrow Signature Classes
arrow Signature Types
arrow Signature Severity
Most Popular
Most Commented
Featured Author

admin

image
<| Cisco Articles | Maximum Learning | All Cisco-Network Study Notes | Privacy Policy |>
If you think you own the material being used without permission, contact alperenmad[at]hotmail.com. material will be removed from the site.