CHAPTER 14

Configuration - IPSec Mode

The IPSecConfiguration commands allow the user to configure the VPN IPSec parameters. Enter this sub-group with the (config)# ipsec vpn_ipsec command from the Configuration mode. The IPSec commands are represented by the (config-ipsec-n)#prompt.

Note: First a connection must be created. See ipsec net-to-hostcommand on page 4-23,or ipsec net-to- net command on page 4-24.

For an example of Configuring an IPSec Connection, see Example of IPSec Connection Configuration command on page 14-21.

IPSec Commands

aggressive-mode

key

authentication

lifetime

description

local-subnet

do

max-retries

dpd-delay

mode

dpd-enable

net-type

dpd-timeout

netbios remote-brc-addr

encryption

no commands

end

reconnect

exit

rekey

group

remote-ip

hash

remote-subnet

history

schedule-availability

ip route metric

session-key

ipsec-conn

set-pfs

ipsec-manual

transform-set

Page 321
Image 321
Carrier Access none manual Configuration IPSec Mode, IPSec Commands