Implementing IPSec Network Security on Cisco IOS XR Software
SC-80
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
OL-20382-01
Contents
• Prerequisites for Implementing IPSec Network Security, page 81
• Restrictions for Implementing IPSec Network Security, page 81
• Information About Implementing IPSec Networks, page 81
• Information About Implementing IPSec Networks, page 81
• How to Implement General IPSec Configurations for IPSec Networks, page 85
• How to Implement IPSec Network Security for Locally Sourced and Destined Traffic, page 97
• Configuration Examples for Implementing IPSec Network Security for Locally Sourced and
Destined Traffic, page 101
• Additional References, page 103
Release 3.6.0 Information was added about the use of object tracking in IPSec.
Information was added about new functionality that enables dynamically
learned routes in reverse-route injection to take precedence over static
routes.
Distance and route tag parameters were added to the reverse-route injection
feature.
The upper range value of the sa-id argument in the show crypto ipsec sa
and clear crypto ipsec sa commands was increased from 16500 to 64500.
Information was added about implementing IPSec in site-to-site and remote
VPN topologies.
Information, including examples, were added about the use of object
tracking in an IPSec-enabled network.
Some information was reorganized to increase readability.
Release 3.7.0 No modification.
Release 3.8.0 Information was edited to make clearer which features are supported on the
Cisco
CRS-1 exclusively.
Release 3.9.0 No modification.
To Next Page
Loading...
Need help?
General
