IKEv1 Legacy Configuration Examples » History » Version 7
Andreas Steffen, 21.05.2021 13:10
| 1 | 2 | Andreas Steffen | h1. IKEv1 Legacy Configuration Examples |
|---|---|---|---|
| 2 | 1 | Andreas Steffen | |
| 3 | 3 | Andreas Steffen | These example scenarios use the deprecated stroke management interface. |
| 4 | 3 | Andreas Steffen | |
| 5 | 1 | Andreas Steffen | h2. Remote Access |
| 6 | 1 | Andreas Steffen | |
| 7 | 7 | Andreas Steffen | |RSA authentication with X.509 certificates |{{tc_dr(ikev1-stroke/rw-cert,IPv4)}} |{{tc(ipv6-stroke/rw-ikev1,IPv6)}} |{{tc_dr(ikev1-stroke/nat-rw,NAT)}} | |
| 8 | 7 | Andreas Steffen | |PSK authentication with pre-shared keys (IP) |{{tc_dr(ikev1-stroke/rw-psk-ipv4,IPv4)}} |{{tc(ipv6-stroke/rw-psk-ikev1,IPv6)}} | | |
| 9 | 7 | Andreas Steffen | |PSK authentication with pre-shared keys (FQDN) |{{tc_dr(ikev1-stroke/rw-psk-fqdn,IPv4)}} | | | |
| 10 | 7 | Andreas Steffen | |RSA with XAUTH authentication |{{tc_dr(ikev1-stroke/xauth-rsa,IPv4)}} | | | |
| 11 | 7 | Andreas Steffen | |PSK with XAUTH authentication |{{tc_dr(ikev1-stroke/xauth-psk,IPv4)}} | | | |
| 12 | 7 | Andreas Steffen | |Hybrid RSA (server) / XAUTH (client) authentication|{{tc_dr(ikev1-stroke/xauth-id-rsa-hybrid,IPv4)}}| | | |
| 13 | 1 | Andreas Steffen | |
| 14 | 1 | Andreas Steffen | h2. Remote Access with Virtual IP Adresses |
| 15 | 1 | Andreas Steffen | |
| 16 | 7 | Andreas Steffen | |RAM-based server-side virtual IP pool |{{tc_dr(ikev1-stroke/ip-pool,IPv4)}} | |
| 17 | 7 | Andreas Steffen | |DB-based server-side virtual IP pool |{{tc_dr(ikev1-stroke/ip-pool-db,IPv4)}} | |
| 18 | 7 | Andreas Steffen | |Static server-side virtual IP addresses |{{tc_dr(ikev1-stroke/config-payload,IPv4)}} | |
| 19 | 7 | Andreas Steffen | |Static server-side virtual IP addresses in push mode |{{tc_dr(ikev1-stroke/config-payload-push,IPv4)}} | |
| 20 | 7 | Andreas Steffen | |Static client-side virtual IP addresses |{{tc_dr(ikev1-stroke/virtual-ip,IPv4)}} | |
| 21 | 7 | Andreas Steffen | |RSA with XAUTH authentication and virtual IP addresses |{{tc_dr(ikev1-stroke/xauth-id-rsa-config,IPv4)}} | |
| 22 | 7 | Andreas Steffen | |PSK with XAUTH authentication and virtual IP addresses |{{tc_dr(ikev1-stroke/xauth-id-psk-config,IPv4)}} | |
| 23 | 1 | Andreas Steffen | |
| 24 | 1 | Andreas Steffen | h2. Site-to-Site |
| 25 | 1 | Andreas Steffen | |
| 26 | 7 | Andreas Steffen | |RSA authentication with X.509 certificates |{{tc_dr(ikev1-stroke/net2net-cert,IPv4)}} |{{tc(ipv6-stroke/net2net-ikev1,IPv6)}} | |
| 27 | 7 | Andreas Steffen | |PSK authentication with pre-shared keys |{{tc_dr(ikev1-stroke/net2net-psk,IPv4)}} | | |
| 28 | 1 | Andreas Steffen | |
| 29 | 1 | Andreas Steffen | h2. Host-to-Host |
| 30 | 1 | Andreas Steffen | |
| 31 | 7 | Andreas Steffen | |IPsec tunnel mode with X.509 certificates |{{tc_dr(ikev1-stroke/host2host-cert,IPv4)}} |{{tc(ipv6-stroke/host2host-ikev1,IPv6)}} | |
| 32 | 7 | Andreas Steffen | |IPsec transport mode with X.509 certificates |{{tc_dr(ikev1-stroke/host2host-transport,IPv4)}} |{{tc(ipv6-stroke/transport-ikev1,IPv6)}} | |
| 33 | 1 | Andreas Steffen | |
| 34 | 6 | Andreas Steffen | h2. IP Protocol and Port Policies |
| 35 | 6 | Andreas Steffen | |
| 36 | 7 | Andreas Steffen | |IPsec tunnel restricted to ICMP and ssh protocols |{{tc_dr(ikev1-stroke/protoport-dual,IPv4)}} | |
| 37 | 6 | Andreas Steffen | |
| 38 | 6 | Andreas Steffen | |
| 39 | 1 | Andreas Steffen | h2. Complete List |
| 40 | 1 | Andreas Steffen | |
| 41 | 7 | Andreas Steffen | {{tc_dr(ikev1-stroke,All IKEv1 legacy test scenarios)}} |