Manualshelf

R3166-R3206-HP High-End Firewalls VPN Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
11121314151617181920
11
[FirewallA] interface gigabitEthernet 0/0
[FirewallA-GigabitEthernet0/0] ip address 1.1.1.1 255.255.255.0
[FirewallA-GigabitEthernet0/0] quit
# Create an interface named Tunnel 0.
[FirewallA] interface tunnel 0
# Configure an IPv4 address for interface Tunnel 0.
[FirewallA-Tunnel0] ip address 10.1.2.1 255.255.255.0
# Configure the tunnel encapsulation mode.
[FirewallA-Tunnel0] tunnel-protocol gre
# Configure the source address of interface Tunnel 0 to be the IP address of GigabitEthernet 0/0.
[FirewallA-Tunnel0] source 1.1.1.1
# Configure the destination address of interface Tunnel 0 to be the IP address of GigabitEthernet0/0 on
Firewall B.
[FirewallA-Tunnel0] destination 2.2.2.2
[FirewallA-Tunnel0] quit
# Configure a static route from Firewall A through interface Tunnel 0 to Group 2.
[FirewallA] ip route-static 10.1.3.0 255.255.255.0 tunnel 0
2. Configure Firewall B
# Configure an IPv4 address for interface GigabitEthernet 0/1.
<FirewallB> system-view
[FirewallB] interface gigabitethernet 0/1
[FirewallB-GigabitEthernet0/1] ip address 10.1.3.1 255.255.255.0
[FirewallB-GigabitEthernet0/1] quit
# Configure an IPv4 address for interface GigabitEthernet 0/0, the physical interface of the tunnel.
[FirewallB] interface gigabitEthernet 0/0
[FirewallB-GigabitEthernet0/0] ip address 2.2.2.2 255.255.255.0
[FirewallB-GigabitEthernet0/0] quit
# Create an interface named Tunnel 0.
[FirewallB] interface tunnel 0
# Configure an IP address for interface Tunnel 0.
[FirewallB-Tunnel0] ip address 10.1.2.2 255.255.255.0
# Configure the tunnel encapsulation mode.
[FirewallB-Tunnel0] tunnel-protocol gre
# Configure the source address of interface Tunnel 0 to be the IP address of interface
GigabitEthernet0/0.
[FirewallB-Tunnel0] source 2.2.2.2
# Configure the destination address of interface Tunnel 0 to be the IP address of interface
GigabitEthernet0/0 on Firewall A.
[FirewallB-Tunnel0] destination 1.1.1.1
[FirewallB-Tunnel0] quit
# Configure a static route from Firewall B through interface Tunnel 0 to Group 1.
[FirewallB] ip route-static 10.1.1.0 255.255.255.0 tunnel 0
3. Verify the configuration