[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Configuring IPSec on a Remote System

For another system, such as a RADIUS server or a CMTS device, and the SAE to participate in IPSec-protected communications, make sure that the IPSec configuration for the remote system includes the values in Table 8. The table describes configuration properties as phase 1 or phase 2. Phase 1 indicates IKE phase 1 exchange and phase 2 indicates IKE phase 2 exchange.




Table 8: Configuration Properties for Remote Hosts 
Configuration Property
Description of Value
IKE Configuration

Phase 1 local identity type

IPv4

Phase 1 remote identity type

IPv4

IKE local identity

IP address for the application (CMTS device or RADIUS)

IKE remote identity

IP address of the SAE

Phase 1 authentication method

Preshared key

Phase 1 encryption algorithm

IKE encryption algorithm configured on the SAE

Phase 1 authentication algorithm

IKE authentication algorithm configured on the SAE

Phase 1 IKE mode

Main mode

Phase 1 Perfect Forward Security (PFS) group

IKE Oakley group configured on the SAE

Phase 1 lifetime

IKE lifetime configured on the SAE

Preshared key

Preshared key configured for the SAE

IPSec policy to secure traffic flow

Policy that ensures that traffic between applications is protected; for example, between SAE and RADIUS, or between SAE and CMTS device over COPS-PR

IPSec Policy Configuration

Phase 2 encryption algorithm

Value configured on the SAE

Phase 2 authentication algorithm

Value configured on the SAE

Phase 2 PFS group

Phase 2 Oakley group configured on the SAE

Phase 2 lifetime

Value configured on the SAE


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]