Command Reference Guide Global Configuration Mode Command Set
61200510L1-35E Copyright © 2005 ADTRAN 376
crypto map
Use the crypto map command to define crypto map names and numbers and to enter the associated mode
(either Crypto Map IKE or Crypto Map Manual).
Variations of this command include the following:
crypto map <mapname> <mapindex> ipsec-ike
crypto map <mapname> <mapindex> ipsec-manual
Syntax Description
<mapname> Names the crypto map. You can assign the same name to multiple crypto maps,
as long as the map index numbers are unique.
<mapindex> Assigns a crypto map sequence number.
ipsec-ike Specifies the Crypto Map IKE (refer to Crypto Map IKE Command Set on page
1230). This support s IPSec entries that will use IKE to negotiate keys.
ipsec-manual Specifies the Crypto Map Manual (ref er to Crypto Map Manual C ommand Set on
page 1239). This supports manually configured IPSec entries.
Default Values
There are no default settings for this command.
Applicable Platforms
This command applies to the NetVanta 300, 1000R, 2000, 3000, 4000, and 5000 and Total Access 900
Series units.
Command History
Release 4.1 Command was introduced.
Functional Notes
Crypto map entries do not directly contain the transform configuration for securing data. Instead, the crypto
map is associated with transform sets which contain specific security algorithms (refer to crypto ipsec
transform-set <setname> <parameters> on page 374).
Crypto map entries do not directly contain the selectors used to determine which data to secure. Instead,
the crypto map entry refers to an access control list. An access control list is assigned to the crypto map
using the match address command (refer to ike-policy <policy number> on page 1232).
For VPN configuration example scripts, refer to the technical support note VPN
Configuration Guide located on the ADTRAN OS Documentation CD provided with
your unit.