!1-configure the policy and pre-share
!
crypto isakmp policy 1
encr 3des
hash md5
authentication pre-share
group 2
crypto isakmp key cisco address 0.0.0.0
!
!2-configure ipsec transform-set
!
crypto ipsec transform-set TUNNEL_PROTECTION ah-md5-hmac esp-3des
mode transport
!
!3-configure ipsec profile
!
crypto ipsec profile TUNNEL_PROFILE
set transform-set TUNNEL_PROTECTION
!
!4-Apply the ipsec profile inside the tunnle
!
interface Tunnel0
tunnel protection ipsec profile TUNNEL_PROFILE
!
NOTE : For security reasons and to provide more protect , the addess of DMVPN peers should be more more specific when you configure ISAKMP
No comments:
Post a Comment