Netgear FVS318 FVS318 Reference Manual - Page 185
Step-By-Step Configuration of Cisco IOS Gateway B, encryption 3des
UPC - 606449023381
View all Netgear FVS318 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 185 highlights
Reference Manual for the Model FVS318 Broadband ProSafe VPN Firewall Step-By-Step Configuration of Cisco IOS Gateway B The following are the Cisco commands most relevant to building an inter-vendor VPN. Please refer to your Cisco documentation or www.cisco.com for additional information. 1. Log in to the Cisco router. 2. Type enable, to enter enable mode. Enter your password. 3. Type config t to enter the configuration mode at the command prompt. 4. Create an extended access list. Type access-list 110 permit ip 172.23.9.0 0.0.0.255 10.5.6.0 0.0.0.255 at the command prompt. This specifies the protected ip traffic passing through the router. The first address is Gateway B in the above example and the second is Gateway A. 5. Define your IKE parameters. Type crypto isakmp policy 1 at the command prompt. 6. In the ISAKMP submenu type the following commands: a. encryption 3des b. authentication pre-share c. group 5 d. lifetime 28800 7. Define the pre-shared key by typing crypto isakmp key hr5xb8416aa9r6 address 14.15.16.17. The address used is the WAN address of Gateway A in the example at the beginning of this tech note. 8. Create a transform set by typing crypto ipsec transform-set netgear esp-3des esp-sha-hmac. 9. Create an IPSec policy by typing crypto map netgearmap 10 ipsec-isakmp at the command prompt. Type the following commands in to the IPSec policy submenu: a. description vpn tunnel to netgear firewall router b. set peer 14.15.16.17 c. set transform-set netgear d. set pfs group5 e. match address 110 10. To apply the crypto map to the public interface type crypto map netgearmap. 11. Exit interface command mode by typing exit. 12. Exit configuration mode by typing exit. 13. Reboot Cisco router. NETGEAR VPN Configuration FVS318 or FVM318 to Cisco IOS F-5 M-10146-01