Wireless Security Gateway - RAS Configuration Example
From DocWiki
Contents |
Introduction
The WSG (Wireless Security Gateway) is a high-density IPSec gateway for mobile wireless carrier networks. IP Security (IPSec) is an open standards set. IPSec gives confidentiality, integrity, and authentication for data between IP layer peers. The WSG uses an IPSec-protected tunnel to connect outside endpoints.
WSG allows multiple ways to connect to Remote end-points, such RAS and Site-to-Site.
Related show Commands
This section provides information you can use to confirm your configuration is working properly.
Certain show commands are supported by the Output Interpreter Tool (registered customers only), which allows you to view an analysis of show command output.
Show running-config
hostname WSG13-040801
interface vlan 153
ip address 10.5.153.13 255.255.255.0
interface vlan 99
ip address 99.1.1.1 255.255.255.0
ip default-gateway 10.5.153.1
oam mode single 99
ip host localhost.localdomain 127.0.0.1
snmp-server enable traps snmp authentication
snmp-server enable traps interface
snmp-server enable traps syslog
snmp-server community public rw
snmp-server host 10.1.201.5 traps version 2c cisco
snmp-server contact "NayanZaman"
crypto syslog-level 1
!
crypto address-pool "WSG-Pool"
start-ip 9.1.1.10 end-ip 9.1.1.100 netmask 255.255.255.0
!
crypto remote-secret fqdn nzaman13.cisco.com secret "cisco"
!
crypto profile "RAS-SSwan"
isakmp
lifetime 7200
ike-version both
self-identity id-type fqdn id wsg13.cisco.com
local-secret "cisco"
authentication pre-shared
ipsec
security-association lifetime 7200
access-permit ip 10.1.0.0 subnet 16
local-ip 10.5.153.13
ip address-pool "WSG-Pool"
activate
!
