Wireless Security Gateway - RAS Configuration Example

From DocWiki

Jump to: navigation, search

Contents

Introduction

The WSG (Wireless Security Gateway) is a high-density IPSec gateway for mobile wireless carrier networks. IP Security (IPSec) is an open standards set. IPSec gives confidentiality, integrity, and authentication for data between IP layer peers. The WSG uses an IPSec-protected tunnel to connect outside endpoints.

WSG allows multiple ways to connect to Remote end-points, such RAS and Site-to-Site.



Related show Commands

This section provides information you can use to confirm your configuration is working properly.

Certain show commands are supported by the Output Interpreter Tool (registered customers only), which allows you to view an analysis of show command output.


Show running-config

hostname WSG13-040801
interface vlan 153
  ip address 10.5.153.13 255.255.255.0
interface vlan 99
  ip address 99.1.1.1 255.255.255.0
ip default-gateway 10.5.153.1
oam mode single 99
ip host localhost.localdomain 127.0.0.1

snmp-server enable traps snmp authentication
snmp-server enable traps interface
snmp-server enable traps syslog

snmp-server community public rw
snmp-server host 10.1.201.5 traps version 2c cisco 
snmp-server contact "NayanZaman"
crypto syslog-level 1
!
crypto address-pool "WSG-Pool"
  start-ip 9.1.1.10 end-ip 9.1.1.100 netmask 255.255.255.0
!
crypto remote-secret fqdn nzaman13.cisco.com secret "cisco"
!
crypto profile "RAS-SSwan"
  isakmp
    lifetime 7200
    ike-version both
    self-identity id-type fqdn id wsg13.cisco.com
    local-secret "cisco"
    authentication pre-shared
  ipsec
    security-association lifetime 7200
    access-permit ip 10.1.0.0 subnet 16
    local-ip 10.5.153.13
    ip address-pool "WSG-Pool"
  activate
!

Related Information

Technical Support & Documentation - Cisco Systems

Rating: 0.0/5 (0 votes cast)

Personal tools