- Foundry Router User Guide
Foundry AR-Series Router User Guide
15 - 6 © 2004 Foundry Networks, Inc. June 2004
Step 9: Display the IPSec policies:
Step 10: Display IPSec policies in detail:
Router1# show crypto ipsec policy all
Policy Peer Match Proto Transform
------ ---- ----- ----- ---------
Router2 172.16.0.2 S 172.16.0.1/32/any Any P1 esp-aes-
sha1-tunl
D 10.0.2.0/24/any
INRouter2 172.16.0.2 S 10.0.2.0/24/any Any P1 esp-aes-
Router1# show crypto ipsec policy all detail
Policy name Router2 is enabled, Direction is outbound
Peer Address is 172.16.0.2, Action is Apply
Key Management is Automatic
PFS Group is disabled
Match Address:
Protocol is Any
Source ip address (ip/mask/port): (172.16.0.1/255.255.255.255/
any)
Destination ip address (ip/mask/port): (10.0.2.0/
255.255.255.0/any)
Proposal of priority 1
Protocol: esp
Mode: tunnel
Encryption Algorithm: aes128(key length=128 bits)
Hash Algorithm: sha1
Lifetime in seconds: 3600
Lifetime in Kilobytes: 4608000
Policy name INRouter2 is enabled, Direction is inbound
Peer Address is 172.16.0.2, Action is Apply
Key Management is Automatic
PFS Group is disabled
Match Address:
Protocol is Any
Source ip address (ip/mask/port): (10.0.2.0/255.255.255.0/any)
Destination ip address (ip/mask/port): (172.16.0.1/
255.255.255.255/any)
Proposal of priority 1
Protocol: esp
Mode: tunnel
Encryption Algorithm: aes128(key length=128 bits)
Hash Algorithm: sha1
Lifetime in seconds: 3600
Lifetime in Kilobytes: 4608000