## CentreCOM AR550S ݒW 2.9
##  91 NAT@͂2_IPsec VPNiESP over UDPAXAUTHɂRADIUSF؁j
##  [^[B̃RtBO
##
## u#vŎn܂śAR\[͂ȂƈӖȂR}hłB

ADD USER=secoff PASSWORD=PasswordS PRIVILEGE=SECURITYOFFICER
ENABLE IP
ADD IP INT=vlan1 IP=192.168.20.1 MASK=255.255.255.0
ADD IP INT=eth0 IP=192.168.100.254
ADD IP ROUTE=0.0.0.0 INT=eth0 NEXT=192.168.100.1
# CREATE ENCO KEY=1 TYPE=GENERAL VALUE="secret"
CREATE ISAKMP POLICY=i PEER=12.34.56.78 KEY=1 SENDN=TRUE MODE=AGGRESSIVE LOCALID="remote"
SET ISAKMP POLICY=i XAUTH=CLIENT XAUTHNAME=RouterB XAUTHPASS=PasswordB
CREATE IPSEC SASPEC=1 KEYMAN=ISAKMP PROT=ESP ENCALG=DES HASHALG=SHA
CREATE IPSEC BUNDLESPEC=1 KEYMAN=ISAKMP STRING="1"
CREATE IPSEC POLICY=udp INT=eth0 ACTION=PERMIT LPORT=2746 TRANSPORT=UDP
CREATE IPSEC POLICY=isa INT=eth0 ACTION=PERMIT LPORT=500 RPORT=500 TRANSPORT=UDP
CREATE IPSEC POLICY=vpn INT=eth0 ACTION=IPSEC KEYMAN=ISAKMP BUNDLE=1 PEER=12.34.56.78
SET IPSEC POLICY=vpn LAD=192.168.20.0 LMA=255.255.255.0 RAD=192.168.10.0 RMA=255.255.255.0
SET IPSEC POLICY=vpn UDPTUNNEL=TRUE UDPHEARTBEAT=TRUE
CREATE IPSEC POLICY=inet INT=eth0 ACTION=PERMIT
ENABLE IPSEC
ENABLE ISAKMP
# LOGIN secoff
# ENABLE SYSTEM SECURITY_MODE
