H3C的IPSEC配置问题 10
麻烦大神看一下哪里有问题吗?#version5.20,Release5116P02#sysnameH3C#superpasswordlevel3cipher8F.'';F...
麻烦大神看一下 哪里有问题吗?
#
version 5.20, Release 5116P02
#
sysname H3C
#
super password level 3 cipher 8F.'';FD&"3Q=^Q`MAF4<1!!
#
undo voice vlan mac-address 00e0-bb00-0000
#
domain default enable system
#
router id 10.6.23.19
#
acl number 2001
rule 5 permit source 10.6.23.0 0.0.0.255
#
vlan 1
#
vlan 2
#
domain system
access-limit disable
state active
idle-cut disable
self-service-url disable
#
ike peer quxian
pre-shared-key simple hbnljs
remote-name quxian
local-address 172.16.1.1(公网地址)
nat traversal
#
ipsec proposal quxian
#
ipsec policy-template quxian 1
ike-peer quxian
proposal quxian
#
ipsec policy fenzhi 1 isakmp template quxian
#
user-group system
#
interface NULL0
#
interface Vlan-interface2
description LianJie-DJ-SW
ip address 10.6.23.19 255.255.255.248
#
interface GigabitEthernet0/2
port link-mode route
#
interface GigabitEthernet0/3
port link-mode route
ip address 172.16.1.1 255.255.255.0
ipsec policy fenzhi
#
interface GigabitEthernet0/4
port link-mode route
#
interface GigabitEthernet0/5
port link-mode route
#
interface GigabitEthernet1/2
port link-mode route
#
interface GigabitEthernet1/3
port link-mode route
#
interface GigabitEthernet0/0
port link-mode bridge
#
interface GigabitEthernet0/1
port link-mode bridge
port access vlan 2
#
interface GigabitEthernet1/0
port link-mode bridge
port access vlan 2
#
interface GigabitEthernet1/1
port link-mode bridge
port access vlan 2
#
ospf 1
import-route static
area 0.0.0.13
network 10.6.23.16 0.0.0.7
nssa
#
ip route-static 0.0.0.0 0.0.0.0 172.16.1.1
#
snmp-agent
snmp-agent local-engineid 800063A2033CE5A68397DB
snmp-agent community write HBPRI
snmp-agent community read HBPUB
snmp-agent sys-info version all
#
ssh server enable
#
load xml-configuration
#
user-interface con 0
user-interface vty 0 4
acl 2001 inbound
authentication-mode scheme
#
return
<H3C> 展开
#
version 5.20, Release 5116P02
#
sysname H3C
#
super password level 3 cipher 8F.'';FD&"3Q=^Q`MAF4<1!!
#
undo voice vlan mac-address 00e0-bb00-0000
#
domain default enable system
#
router id 10.6.23.19
#
acl number 2001
rule 5 permit source 10.6.23.0 0.0.0.255
#
vlan 1
#
vlan 2
#
domain system
access-limit disable
state active
idle-cut disable
self-service-url disable
#
ike peer quxian
pre-shared-key simple hbnljs
remote-name quxian
local-address 172.16.1.1(公网地址)
nat traversal
#
ipsec proposal quxian
#
ipsec policy-template quxian 1
ike-peer quxian
proposal quxian
#
ipsec policy fenzhi 1 isakmp template quxian
#
user-group system
#
interface NULL0
#
interface Vlan-interface2
description LianJie-DJ-SW
ip address 10.6.23.19 255.255.255.248
#
interface GigabitEthernet0/2
port link-mode route
#
interface GigabitEthernet0/3
port link-mode route
ip address 172.16.1.1 255.255.255.0
ipsec policy fenzhi
#
interface GigabitEthernet0/4
port link-mode route
#
interface GigabitEthernet0/5
port link-mode route
#
interface GigabitEthernet1/2
port link-mode route
#
interface GigabitEthernet1/3
port link-mode route
#
interface GigabitEthernet0/0
port link-mode bridge
#
interface GigabitEthernet0/1
port link-mode bridge
port access vlan 2
#
interface GigabitEthernet1/0
port link-mode bridge
port access vlan 2
#
interface GigabitEthernet1/1
port link-mode bridge
port access vlan 2
#
ospf 1
import-route static
area 0.0.0.13
network 10.6.23.16 0.0.0.7
nssa
#
ip route-static 0.0.0.0 0.0.0.0 172.16.1.1
#
snmp-agent
snmp-agent local-engineid 800063A2033CE5A68397DB
snmp-agent community write HBPRI
snmp-agent community read HBPUB
snmp-agent sys-info version all
#
ssh server enable
#
load xml-configuration
#
user-interface con 0
user-interface vty 0 4
acl 2001 inbound
authentication-mode scheme
#
return
<H3C> 展开
展开全部
继续使用旧电脑可能会对您的企业财务造成巨大的负面影响。维护成本、安全漏洞和生产力损失都会危及您的利润。
每台 5 年机龄的电脑每年给企业造成的生产力损失达 12,495 美元。1 员工使用这些电脑会使生产力降低 21%。2 您需要雇用一名额外员工来弥补生产力损失。3
每台 5 年机龄的电脑每年给企业造成的生产力损失达 12,495 美元。1 员工使用这些电脑会使生产力降低 21%。2 您需要雇用一名额外员工来弥补生产力损失。3
追问
你是来秀智商的么?
你是来秀智商的么?
已赞过
已踩过<
评论
收起
你对这个回答的评价是?
推荐律师服务:
若未解决您的问题,请您详细描述您的问题,通过百度律临进行免费专业咨询
