Configuring IPSec
To implement IPSec, you must understand and configure the following:
- Considering General IPSec Issues
- Configuring Security Associations
- Using a Filter to Select Traffic to Be Secured
- Applying the Filter or Service Set to the Interface Receiving Traffic to Be Secured
The following are optional items you can add to your IPSec configuration:
- Option: Using Digital Certificates
- Option: Using Filter-Based Forwarding to Select Traffic to Be Secured
- Option: Using IPSec with a Layer 3 VPN
- Option: Securing BGP Sessions with Transport Mode
- Option: Securing OSPFv3 Networks with Transport Mode
- Option: Monitoring IPSec by Using SNMP
- Option: Configuring IPSec Dynamic Endpoints
- Option: Configuring Multiple Routed Tunnels in a Single Next-Hop Service Set
To apply your knowledge, visit these sections:
- Example: ES PIC Manual SA Configuration
- Checking Your Work
- Example: AS PIC Manual SA Configuration
- Checking Your Work
- Example: ES PIC IKE Dynamic SA Configuration
- Checking Your Work
- Example: AS PIC IKE Dynamic SA Configuration
- Checking Your Work
- Example: IKE Dynamic SA Between an AS PIC and an ES PIC Configuration
- Checking Your Work
- Example: AS PIC IKE Dynamic SA with Digital Certificates Configuration
- Checking Your Work
- Example: Dynamic Endpoint Tunneling Configuration
- Checking Your Work