In this example, you set the gateway address to 1.1.1.2 and the external (outgoing) interface, to ge-0/0/2.0. You specify ESP as the security protocol, set 16,100 as the Security Parameter Index, and se hmac-md5-96 as your authentication algorithm and enter an ASCII key. You then specify 3DES-CBC encription and also enter an ASCII key.
-
user@host# set security ipsec vpn
manual_0 manual gateway 1.1.1.2
-
user@host# set security ipsec vpn
manual_0 manual external-interface ge-0/0/2.0
-
user@host# set security ipsec vpn
manual_0 manual protocol esp
-
user@host# set security ipsec vpn
manual_0 manual spi 16100
-
user@host# set security ipsec vpn
manual_0 manual authentication algorithm hmac-md5-96
-
user@host# set security ipsec vpn
manual_0 manual authentication key ascii-text "$9$NrbgJiHmQz6Vwi.5T9CO1REclKvLdb28XVY24DjHqmfz6/Ct"
-
user@host# set security ipsec vpn
manual_0 manual encryption algorithm 3des-cbc
-
user@host# set security ipsec vpn
manual_0 manual encryption key ascii-text "$9$WoPxVYDjq.5FjHz6/AIRdbs2oGmfz6CujH1hrlXx24aJHmTz69A069K8XNY2n/CuIc8LN-bs"