FireBrick to FireBrick IPsec (Howto): Difference between revisions
Content deleted Content added
mNo edit summary |
mNo edit summary |
||
| Line 26: | Line 26: | ||
<connection name="toReading" local-ip="203.0.113.1" peer-ips="198.51.100.1" graph="ReadingIPsec" routes="10.0.0.0/24" local-ID="1" peer-ID="1" auth-method="Secret" secret="mySecretPassword" mode="Immediate"/> |
<connection name="toReading" local-ip="203.0.113.1" peer-ips="198.51.100.1" graph="ReadingIPsec" routes="10.0.0.0/24" local-ID="1" peer-ID="1" auth-method="Secret" secret="mySecretPassword" mode="Immediate"/> |
||
</ipsec-ike> |
</ipsec-ike> |
||
A firewall filter may be needed too, eg: |
|||
<rule-set name="filters" no-match-action="drop"> |
|||
<rule name="IPsec from London FB" protocol="50" action="accept" source-ip="198.51.100.1"/> |
|||
</rule> |
|||
==FireBrick B Config== |
==FireBrick B Config== |
||
| Line 32: | Line 38: | ||
<connection name="toLondon" local-ip="198.51.100.1" peer-ips="203.0.113.1" graph="LondonIPsec" routes="192.168.0.0/24"local-ID="1" peer-ID="1" auth-method="Secret" secret="mySecretPassword" mode="Immediate"/> |
<connection name="toLondon" local-ip="198.51.100.1" peer-ips="203.0.113.1" graph="LondonIPsec" routes="192.168.0.0/24"local-ID="1" peer-ID="1" auth-method="Secret" secret="mySecretPassword" mode="Immediate"/> |
||
</ipsec-ike> |
</ipsec-ike> |
||
A firewall filter may be needed too, eg: |
|||
<rule-set name="filters" no-match-action="drop"> |
|||
<rule name="IPsec from Reading FB" protocol="50" action="accept" source-ip="203.0.113.1"/> |
|||
</rule> |
|||