set security ike proposal Magone authentication-method pre-shared-keys
set security ike proposal Magone dh-group group2
set security ike proposal Magone authentication-algorithm sha1
set security ike proposal Magone encryption-algorithm 3des-cbc
set security ike proposal Magone lifetime-seconds 28800
set security ike policy ike_pol_to_Magone mode main
set security ike policy ike_pol_to_Magone proposals Magone
set security ike policy ike_pol_to_Magone pre-shared-key ascii-text “$9$mf5zOBErK8Ct87-VoaDik.PQFn/AuOzFIE”
set security ike gateway gw_to_Magone ike-policy ike_pol_to_Magone
set security ike gateway gw_to_Magone address 47.19.223.226
set security ike gateway gw_to_Magone dead-peer-detection
set security ike gateway gw_to_Magone local-identity inet 198.24.59.200
set security ike gateway gw_to_Magone external-interface reth0.0
set security ipsec proposal Magone protocol esp
set security ipsec proposal Magone authentication-algorithm hmac-sha1-96
set security ipsec proposal Magone encryption-algorithm aes-256-cbc
set security ipsec proposal Magone lifetime-seconds 28800
set security ipsec vpn to_Magone bind-interface st0.10
set security ipsec vpn to_Magone ike gateway gw_to_Magone
set security ipsec vpn to_Magone ike ipsec-policy ipsec_pol_to_Magone
set security ipsec vpn to_Magone establish-tunnels immediately
set security policies from-zone untrust to-zone trust policy Magione_VPN match source-address Magone_LAN
set security policies from-zone untrust to-zone trust policy Magione_VPN match destination-address addr_10_1_1_0_24
set security policies from-zone untrust to-zone trust policy Magione_VPN match application any
set security policies from-zone untrust to-zone trust policy Magione_VPN then permit
set security policies from-zone trust to-zone trust policy Magone_VPN match source-address Magone_LAN_ADD
set security policies from-zone trust to-zone trust policy Magone_VPN match destination-address addr_10_1_1_0_24
set security policies from-zone trust to-zone trust policy Magone_VPN match application any
set security policies from-zone trust to-zone trust policy Magone_VPN then permit
set security policies from-zone trust to-zone trust policy policy_out_to_Magone match source-address addr_10_1_1_0_24
set security policies from-zone trust to-zone trust policy policy_out_to_Magone match destination-address Magone_LAN_ADD
set security policies from-zone trust to-zone trust policy policy_out_to_Magone match application any
set security policies from-zone trust to-zone trust policy policy_out_to_Magone then permit
set security zones security-zone untrust address-book address Magone_LAN 192.168.69.0/24
set security zones security-zone trust address-book address Magone_LAN_ADD 192.168.69.0/24
set security zones security-zone trust interfaces st0.10
set routing-options static route 192.168.69.0/24 next-hop st0.10
Leave A Comment?