Configuring Dynamic Security Associations

Previous page
Table of content
Next page

You configure dynamic SAs with a set of proposals negotiated by the security gateways. The keys are generated as part of the negotiation and therefore do not need to be specified in the configuration. The dynamic SA includes one or more proposals, which allow you to prioritize a list of protocols and algorithms to be negotiated with the peer.

To enable a dynamic SA, configure IKE proposals and IKE policies associated with these proposals, configure IPSec proposals and an IPSec policy associated with these proposals, and associate an SA with an IPSec policy. To associate an SA with an IPSec policy, include the dynamic statement: 

 [edit security ipsec security-association  name  ]  dynamic ipsec-policy  policy-name;

Previous page
Table of content
Next page
Juniper Networks Field Guide and Reference
Juniper Networks Field Guide and Reference
ISBN: 0321122445
EAN: 2147483647
Year: 2002
Pages: 185
Authors: Aviva Garrett, Gary Drenan, Cris Morris, Juniperu00ae Networks
BUY ON AMAZON
Network Security Architectures
MySQL Cookbook
Wireless Hacks: Tips & Tools for Building, Extending, and Securing Your Network
InDesign Type: Professional Typography with Adobe InDesign CS2
Extending and Embedding PHP
Python Standard Library (Nutshell Handbooks) with
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy