[Contents]
[Prev]
[Next]
[Index]
[Report an Error]
Example: Configuring the ES PIC
Configure an IPSec tunnel as a logical interface
on the ES PIC. The logical interface specifies the tunnel through
which the encrypted traffic travels. The ipsec-sa statement
associates the security profile with the interface.
- [edit interfaces]
- es-0/0/0 {
-
- unit 0 {
-
- tunnel {
- source tunnel 10.5.5.5; # tunnel source
address
- destination 10.6.6.6; # tunnel
destination address
- }
-
- family inet {
- ipsec-sa ipsec-sa; # name of security
association to apply to packet
- address 10.1.1.8/32 { # local interface address inside
local VPN
- destination 10.2.2.254; # destination address inside remote
VPN
- }
- }
- }
[Contents]
[Prev]
[Next]
[Index]
[Report an Error]
