Ipsec summary of safety technology on Huawei equipment 02/25 Update SLTechnology News&Howtos

Ipsec summary of safety technology on Huawei equipment

2025-02-25 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Shulou(Shulou.com)06/01 Report--

ipsec

IPSEC is a general term for a series of network security protocols developed by IETF (Internet Engineering Task Force), which can provide access control, connectionless integrity, data source authentication, anti-replay, encryption and classified encryption of data streams for both parties of communication. It is a network layer security mechanism that protects network layer packet information so that upper layer applications can automatically benefit from the security provided by the network layer, even if they do not implement security. This dispelled concerns about the safety of ×××, allowing ××× to be widely used. IPSec works in two ways: transmission and tunneling. And ipsec works in two modes: manual configuration and auto-negotiation

[Objective]

A series of network protocols of ipsec are used to establish ××× pipeline mode to ensure information security

[Experimental topology]

[Experimental Configuration]

Basic configuration on switches

dis cu

sysname Quidway

radius scheme system

server-type huawei

primary authentication 127.0.0.1 1645

primary accounting 127.0.0.1 1646

user-name-format without-domain

domain system

radius-scheme system

access-limit disable

state active

vlan-assignment-mode integer

idle-cut disable

self-service-url disable

messenger time disable

domain default enable system

local-server nas-ip 127.0.0.1 key huawei

vlan 1

vlan 10

vlan 20

vlan 30

interface Vlan-interface1

interface Vlan-interface10

ip address 1.1.1.2 255.255.255.0

interface Vlan-interface20

ip address 1.1.2.2 255.255.255.0

interface Vlan-interface30

ip address 1.1.3.2 255.255.255.0

interface Aux0/0

interface Ethernet0/1

interface Ethernet0/2

interface Ethernet0/3

interface Ethernet0/4

interface Ethernet0/5

interface Ethernet0/6

interface Ethernet0/7

interface Ethernet0/8

interface Ethernet0/9

interface Ethernet0/10

port access vlan 10

interface Ethernet0/11

interface Ethernet0/12

interface Ethernet0/13

interface Ethernet0/14

interface Ethernet0/15

interface Ethernet0/16

interface Ethernet0/17

interface Ethernet0/18

interface Ethernet0/19

interface Ethernet0/20

port access vlan 20

interface Ethernet0/21

interface Ethernet0/22

interface Ethernet0/23

interface Ethernet0/24

port access vlan 30

interface NULL0

user-interface aux 0

user-interface vty 0 4

return

manual configuration

[h4c1]dis cu

sysname h4c1

firewall packet-filter enable

firewall packet-filter default permit

insulate

firewall statistic system enable

radius scheme system

server-type extended

domain system

local-user admin

password cipher .]@ USE=B,53Q=^Q`MAF4

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.