 |
Note: The AH protocol is supported only on M-series platforms. |
IPSec uses two protocols to protect IP traffic: Encapsulating Security Payload (ESP) and authentication header (AH). For transport mode SAs, both ESP and AH are supported. The AH protocol is used for strong authentication. The bundle option uses AH authentication and ESP encryption; it does not use ESP authentication because AH provides stronger authentication of IP packets.
|
Note: The AH protocol is supported only on M-series platforms. |
To configure the IPSec protocol on an ES PIC, include the protocol statement at the edit security ipsec security-association sa-name manual direction (inbound | outbound | bidirectional)] hierarchy level and specify the ah, bundle, or esp option:
- [edit security ipsec security-association sa-name manual direction (inbound |
- outbound | bi-directional)]
-
protocol (ah | bundle | esp);
 | Copyright © 2009, Juniper Networks, Inc. All rights reserved. Trademark Notice. | |