ipsec VPN 技术介绍
提示:列表可左右滑动查看。
<h1 id="articleContentId" style="outline: 0px; margin-top: 0px; margin-bottom: 0px; font-weight: 600; font-family: "PingFang SC", "Microsoft YaHei", SimHei, Arial, SimSun; font-size: 28px; overflow-wrap: break-word; color: rgb(34, 34, 38); word-break: break-all;"><span style="color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium; font-weight: 400;">先浅说一下我当时学习ipsec的场景吧。我们老师把数据安全里面的各种协议(用于数据加密的ESP/AH,加密算法,哈希算法,数字签名等)先给我们打了一个铺垫后,接着讲着原理,后讲配置,虽然课后配是会配了,也大体上知道怎么个配置方法说得出来个阶段一,二。但各个知识体系如同散沙一般在我知识体系里面,没有逻辑框架把它门一个一个对应起来。现在有时间在网上查资料把它门拼接起来,并用通俗易懂的语言和理解方式介绍给大家听,我会以总分总的方式,先在整体上大致去理解,逻辑化去分析ipsec协议簇,再分开去细讲各个组成部分,最后配置,汇总起来,总结归纳,希望大家学习完后能掌握ipsec vpn,也能更好理解VPN(大学生易读版,放心)</span><br></h1><div><span style="color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium; font-weight: 400;"><br></span></div><div><h2 id="h_675266786_1" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.2em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(2.33333em)="" 0px="" calc(1.16667em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">IPSEC VPN简介</h2><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">IPSEC(Internet Protocol Security)是一组基于网络层的,应用密码学的安全通信协议簇,注意⚠️⚠️它并不是单个协议,而是由多个协议共同构成的协议簇!!!</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">IPSEC VPN 是基于IPSec协议簇构建的在IP层实现的安全虚拟专用网,通过封装头部的方式来保障数据传输的安全性。IPsec VPN就是利用IPsec隧道来建立起网络层VPN(三层vpn)</p><h3 id="h_675266786_4" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.1em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(1.90909em)="" 0px="" calc(1.27273em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">实际理解</h3><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">IPSEC作为一个协议簇,其作用是对数据提供安全服务,IPSEC VPN则是在其安全服务的基础上实现VPN,IPSEC VPN由多个协议按照不同的逻辑方式共同组建起来,主要是密钥管理(IKE),其工作过程又分为第一阶段和第二阶段,以及工作模式,加密算法(ESP/AH)三者,我们先不管其实际知识,先理解性把三者逻辑化的组成起来。</p><h2 id="h_675266786_6" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.2em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(2.33333em)="" 0px="" calc(1.16667em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">KE协商阶段</h2><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">简介:IKE(Internet Key Exchange)进行安全联盟建立与密钥交换的过程,为安全协议的使用提供密钥,构成加密算法</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">理解:IKE为IPSec协商生成密钥,与AH/ESP结合使用,提供安全服务</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">目的:建立ipsec的基础,也是ipsec的精髓所在,SA(安全联盟)!!!通过使用安全联盟(SA) , IPSec能对的数据流提供的安全服务。(这里把安全联盟看作安全关联更好理解一点)</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">工作流程:</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">阶段一:a.互相告知安全参数(哈希算法,完整性算法),为阶段二使用做准备。</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">b.为IPSec协商生成密钥,互相告知密钥,为步骤c相互认证的使用做准备。</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">c.验证对等体,建立ISAKMP SA</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">阶段二:ISAKMP SA通过协商安全服务(阶段一的安全参数以及ESP/AH安全协议)升级,建立IPSec SA,产生真正可以用来加密数据流的密钥</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">以上为IKE具体实现略讲,阶段一采用主模式,阶段二采用快输模式</p><p style="margin-top: -0.8em; margin-bottom: -0.8em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;"><br></p><h2 id="h_675266786_7" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.2em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(2.33333em)="" 0px="" calc(1.16667em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">安全协议</h2><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">简介:通过安全协议来保护数据传输的安全性</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">理解安全协议和IKE的关系:IKE协议用于自动协商AH和ESP所使用的密码算法,AH/ESP的实现需要IKE提供密钥支持</p><h2 id="h_675266786_8" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.2em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(2.33333em)="" 0px="" calc(1.16667em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">工作模式</h2><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">简介:工作模式分为传输模式和隧道模式,通过封装的方式实现报文能在公网传输</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">理解:在IKE和通信协议共同实现安全服务的基础上,要考虑怎么实现VPN呗,工作模式在这里发挥通过封装实现VPN的作用</p><h3 id="h_675266786_9" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.1em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(1.90909em)="" 0px="" calc(1.27273em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">传输模式(不常用)</h3><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">封装方式:不改变原有的IP包头,在原数据包头后面插入IPSec包头,只封装数据部分。</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">运用场景:加密点就是通信点的时候(在俩终端建立VPN,之前我也很疑惑ipsec的传输模式都不封装公网ip,原本的私网IP也动都不动,那如果通信点等于加密点,也实现不了vpn嘞,被老师说转不过弯,万一ipsec是建立在内网环境了??!!)</p><h3 id="h_675266786_10" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.1em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(1.90909em)="" 0px="" calc(1.27273em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">隧道模式(常用)</h3><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">封装方式:封装上公网头部,并封装上ipsec的报头,除此之外,将原数据包的数据和ip报头进行封装并且加密,并加密原ip包头。</p><h2 id="h_675266786_11" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.2em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(2.33333em)="" 0px="" calc(1.16667em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">知识细讲小结:</h2><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">在IPSEC VPN中,IKE工作一二阶段后提供密钥,为安全协议共同构成加密算法,在此基础上通过不同的工作模式实现有安全保障的VPN。</p><p style="margin-top: -0.8em; margin-bottom: -0.8em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;"><br></p><h2 id="h_675266786_12" font-style:="" normal;="" font-variant-ligatures:="" font-variant-caps:="" font-variant-numeric:="" inherit;="" font-variant-east-asian:="" font-variant-alternates:="" font-variant-position:="" font-weight:="" 600;="" font-stretch:="" font-size:="" 1.2em;="" line-height:="" 1.5;="" font-family:="" -apple-system,="" blinkmacsystemfont,="" "helvetica="" neue",="" "pingfang="" sc",="" "microsoft="" yahei",="" "source="" han="" sans="" "noto="" cjk="" "wenquanyi="" micro="" hei",="" sans-serif;="" font-optical-sizing:="" font-kerning:="" font-feature-settings:="" font-variation-settings:="" margin:="" calc(2.33333em)="" 0px="" calc(1.16667em);="" clear:="" left;="" color:="" rgb(25,="" 27,="" 31);="" letter-spacing:="" orphans:="" 2;="" text-align:="" start;="" text-indent:="" 0px;="" text-transform:="" none;="" widows:="" word-spacing:="" -webkit-text-stroke-width:="" white-space:="" background-color:="" rgb(255,="" 255,="" 255);="" text-decoration-thickness:="" initial;="" text-decoration-style:="" text-decoration-color:="" initial;"="">配置</h2><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">配置思路:从上述的实际理解就可知,先配置出</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">1.阶段一(为阶段二做准备的算法,密钥,验证对等题)</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">2.阶段二(在阶段一基础上配置上安全协议)毕竟IKE的阶段一二就是为了建立SA,为安全协议构成加密算法嘛</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">3.确认工作模式</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">4.整合以上的资源以及匹配对象(vpn是在俩路由器上配置,业务数据传输是俩通信点上)以及要进行传输的VPN对端和本端。</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;">5.在接口上调用步骤4上整合的所有资源。</p><p style="margin-top: 1.4em; margin-bottom: 1.4em; color: rgb(25, 27, 31); font-family: -apple-system, BlinkMacSystemFont, "Helvetica Neue", "PingFang SC", "Microsoft YaHei", "Source Han Sans SC", "Noto Sans CJK SC", "WenQuanYi Micro Hei", sans-serif; font-size: medium;"><br></p></div>
赞(0)
收藏(0)
分享
相关标签:
