Command Reference Guide IKE Policy Command Set
61200510L1-35E Copyright © 2005 ADTRAN 1271
The following example sets up a policy allowing any peer to initiate using preshared secret, DES, MD5,
and Diffie-Hellman Group 1.
(config)#crypto ike policy 100
(config-ike)#peer any
(config-ike)#respond anymode
(config-ike)#initiate main
Technology Review
IKE policies must have a peer address associated with them to allow certain peers to negotiate with the
ADTRAN product. This is a problem when you have “roaming” users (those who obtain their IP address
using DHCP or some other dynamic means). To allow for “roaming” users, the IKE policy can be set up
with peer any to allow any peer to negotiate with the ADTRAN product. There can only be one peer any
policy in the running configuration.