Table Of Contents
IPsec Modes...........................................................................................................................137
Policy Vs Route Based VPNs................................................................................................138
Supported Encryption Protocols ...........................................................................................138
Public Key And Pre-shared Keys...........................................................................................139
X509 Certificates...................................................................................................................139
NAT Traversal.......................................................................................................................139
Other Configuration Supporting IPSec..................................................................................139
The Openswan Configuration Process...................................................................................140
IPsec and Router Interfaces....................................................................................................140
Ipsec VPN Configuration...............................................................................................................141
VPN Main Menu Before Key Generation..................................................................................141
VPN Main Menu ......................................................................................................................141
Server Configuration .................................................................................................................142
Public Key .................................................................................................................................143
Preshared Keys ..........................................................................................................................143
List Certificates..........................................................................................................................144
VPN Connections ......................................................................................................................144
IPsec VPN Connection Details..............................................................................................145
Left/Right System's Settings..................................................................................................146
Export Configuration.............................................................................................................146
Showing IPsec Status ................................................................................................................147
IPSec X.509 Roaming Client Example......................................................................................148
Select A Certificate Authority................................................................................................148
Generate X.509 Certificates .................................................................................................149
VPN Networking Parameters.................................................................................................149
Client Configuration..............................................................................................................149
Router IPSec Configuration...................................................................................................149
Firewall IPSec Configuration.................................................................................................150
Ethernet Port Configuration...................................................................................................150
Chapter 16 - Configuring Dynamic Routing .....................................................................................151
Introduction....................................................................................................................................151
Quagga, RIP and OSPF..............................................................................................................151
RIP Fundamentals......................................................................................................................151
OSPF Fundamentals...................................................................................................................152
Link State Advertisements.....................................................................................................152
Key OSPF And RIP Parameters.................................................................................................152
Network Areas.......................................................................................................................152
Router-ID...............................................................................................................................153
Hello Interval and Dead Interval............................................................................................153
Active/Passive Interface Default............................................................................................153
Redistributing Routes.............................................................................................................153
Link Detect.............................................................................................................................154
Configuring OSPF Link Costs...............................................................................................154
OSPF Authentication.............................................................................................................154
RIP Authentication.................................................................................................................154
OSPF And Antispoofing........................................................................................................154
Administrative Distances.......................................................................................................155
OSPF And VRRP Example Network.........................................................................................155
Area And Subnets..................................................................................................................155
VRRP Operation....................................................................................................................156
RuggedCom 11