While logged in as manager.
Note keys can only be created and kept by a user with security
officer privilages,
who is using a terminal connected to the serial port on the back of the
Firewall/Router.
Login as manager, and enable security fuctions
Login as a user with security Officer Privilage.
Create a key
Display key :-
Note the string returned, you will need it for the other firewall.
Login as manager, and enable security fuctions
Login as a user with security Officer Privilage.
Create a key, the value is string returned when
creating the key on the first Firewall.
add
user=Arther
password=wizard
priv=securityofficer
Create IPsec Keys pre-shared
We are going to use preshared keys for Authentication.
The key will be created on the First Firewall and then instaled on the
second. Each Firewall can store a list of 65,535 keys.
show enco key
will show the keys currently in use.
First Firewall
Connect a terminal to serial port 0 on the back of the router.
enable system security
login Arther
Passwd: *****create enco
key=1
type=gen
len=14
random
show enco key=1
Second Firewall
Connect a terminal to serial port 0 on the back of the router.
enable system security
login Arther
Passwd: *****create enco
key=1
type=gen
val=abcdefghijklmn