Manualshelf

3Com Switch 8800 Family IPsec Module Configuration and Command reference Guide

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve 8116fl Redundant Switch Fabric Module
51525354555657585960
AAA and RADIUS/HWTACACS Protocol Configuration Example 55
[secblade] firewall zone trust
[secblade-zone-trust] add interface GigabitEthernet 0/0.1
[secblade-zone-trust] quit
# Add the sub-interface of the external network to the untrust zone.
[secblade] firewall zone untrust
[secblade-zone-untrust] add interface GigabitEthernet 0/0.2
[secblade-zone-untrust] quit
# Configure the static route.
[secblade] ip route-static 10.0.0.0 24 30.0.0.1
# Configure the Telnet user to use AAA authentication mode.
[secblade] user-interface vty 0 4
[secblade-ui-vty0-4] authentication-mode scheme
# Configure the domain.
[secblade] domain cams
[secblade-isp-cams] access-limit enable 10
[secblade-isp-cams] accounting optional
[secblade-isp-cams] quit
# Configure a RADIUS scheme.
[secblade] radius scheme cams
[secblade-radius-cams] primary authentication 10.0.0.1 1812
[secblade-radius-cams] primary accounting 10.0.0.1 1813
[secblade-radius-cams] key authentication expert
[secblade-radius-cams] key accounting expert
[secblade-radius-cams] server-type 3Com
[secblade-radius-cams] user-name-format with-domain
[secblade-radius-cams] quit
# Configure to associate the domain with the RADIUS.
[secblade] domain cams
[secblade-isp-cams] scheme radius-scheme cams
[secblade-isp-cams] quit
Telnet users use usernames in the userid@cams format to log onto the network
and are to be authenticated as cams domain users.
# Quit IPsec module configuration view.
[secblade] quit
<secblade> quit
[SW8800]