Moxa EDR-810-VPN-2GSFP [39/74] Cli command set user s manual nat vpn and firewall functions
Макгруп McGrp.ru
Задайте вопрос
Зарегистрироваться

Moxa EDR-810-VPN-2GSFP [39/74] Cli command set user s manual nat vpn and firewall functions

Moxa EDR-810-2GSFP [39/74] Cli command set user s manual nat vpn and firewall functions
CLI Command Set User's Manual NAT, VPN, and Firewall Functions
3-5
Enable/Disable/Delete
policy
router(config)# modbus-filter index [enable | disable]
router(config)# no modbus-filter index
Enable/Disable/Delete
policy
router(config)# l2-filter index [enable | disable]
router(config)# no l2-filter index
IPSec
Category Commands
Display settings router# show ipsec
router# show ipsec name
Global setting router(config)# ipsec all-connect
router(config)# no ipsec all-connect
router(config)# ipsec nat-t
router(config)# no ipsec nat-t
Create connection /Tunnel
setting
Quick Setting:
The type, remote-gateway, network must be set in tunnel setting, and the
auth-mode should be set to pre-shared key mode in phase1 setting, all other
commands are the default values, then it can work as a standard-strength IPSec
connection. IPSec Name must begin with an alphabet, and it cannot contain a
space.
Default:
l2tp: disable
interface: wan1
mode: wait
The connection is disabled by default.
router(config)# ipsec name
router(config-ipsec)# l2tp
router(config-ipsec)# no l2tp
router(config-ipsec)# remote-gateway ip-address
router(config-ipsec)# interface wan wanID
router(config-ipsec)# startup-mode {start | wait}
router(config-ipsec)# local-network ip-address netmask [ID]
router(config-ipsec)# remote-network ip-address netmask [ID]
Phase1 setting Default:
ike-mode: main
auth-mode: pre-shared key
encryption: 3des
hash: sha1
group: 2
negotiation-time: 0 (forever)
life-time: 1 hour
rekey-time: 9 mins
rekey-fuzz-percent: 100%
router(config-ipsec)# phase1
router(config-ipsec-phase1)# ike-mode {main | aggressive}
router(config-ipsec-phase1)# auth-mode {psk key | x509 local.crt remote.crt}
router(config-ipsec-phase1)# encryption {des | 3des | aes128 | aes192 |
aes256}
router(config-ipsec-phase1)# hash {any | md5 | sha1 | sha256}
router(config-ipsec-phase1)# dh-group {768 | 1024 | 1536 | 2048}
router(config-ipsec-phase1)# negotiation-time times

Содержание

Похожие устройства

Скачать
Случайные обсуждения

Ответы 1

Здраствуйте. У моксе edr 810 почему нет раздел впн?
2 года назад