Allied Telesis AT-WR4500 Network Router User Manual


  Open as PDF
of 264
 
AT-WR4500 Series - IEEE 802.11abgh Outdoor Wireless Routers 195
RouterOS v3 Configuration and User Guide
Example
To flush all the SAs installed:
[admin@AT-WR4562] ip ipsec installed-sa> flush
[admin@AT-WR4562] ip ipsec installed-sa> print
[admin@AT-WR4562] ip ipsec installed-sa>
8.8.7 Application Examples
RouterOS Router to RouterOS Router
[
Router2
]
1.0.0.2
[
R
outer1
]
1.0.0.1
IP Network
10.1.0.0/24
10.2.0.0/24
1.0.0.0/24
Figure 30: transport mode example using ESP with automatic keying
for Router1
[admin@Router1] > ip ipsec policy add sa-src-address=1.0.0.1 sa-dst-address=1.0.0.2 \
\... action=encrypt
[admin@Router1] > ip ipsec peer add address=1.0.0.2 \
\... secret="gvejimezyfopmekun"
for Router2
[admin@Router2] > ip ipsec policy add sa-src-address=1.0.0.2 sa-dst-address=1.0.0.1 \
\... action=encrypt
[admin@Router2] > ip ipsec peer add address=1.0.0.1 \
\... secret="gvejimezyfopmekun"
Transport mode example using ESP with automatic keying and automatic policy generating on Router 1
and static policy on Router 2
for Router1
[admin@Router1] > ip ipsec peer add address=1.0.0.0/24 \
\... secret="gvejimezyfopmekun" generate-policy=yes
for Router2
[admin@Router2] > ip ipsec policy add sa-src-address=1.0.0.2 sa-dst-address=1.0.0.1 \
\... action=encrypt
[admin@Router2] > ip ipsec peer add address=1.0.0.1 \
\... secret="gvejimezyfopmekun"
tunnel mode example using AH with manual keying
 previous next