IPsec Implementation Requirements
The following parameter configuration is required to implement IPsec on your network:
- IPsec is disabled by default. You must enable IPsec.
- IPsec is disabled
by default for RADIUS transactions. You must configure the RADIUS management MS-CHAPv2
password attribute for IPsec to work. See the set radius mgmt attribute command details
in the RADIUS commands chapter of the S-,
K-, and 7100 Series CLI Reference Guide for
information on configuring the RADIUS management MS-CHAPv2 password attribute.
Configure the IPsec default instance by assigning an IKE map to it.
Optional IPsec and IKE configuration includes enabling IPsec traps.