Chapter 12: IKE/IPsec Commands

Efficient Networks® Router family

 

Command Line Interface Guide

 

 

Parameters

<interface>a Interface that must be connected when the policy is used. This is usually referenced by a remote name, although it could be another interface such as “ethernet/0”. If no interface restriction is to be set for this policy, specify the string all.

<policyname>a Name of the IPsec policy to which the interface parameter value is added.b

aASCII string

bTo see the policy names, use the ike ipsec policies list command.

Examples

This command requires that, when the remote interface backup comes up, IKE is enabled for packets described by policy corporate. The specified interface (back- up) must be the interface to the IKE peer.

-> ike ipsec policies set interface backup corporate

This command specifies that IKE is enabled for packets described by policy my- policy regardless of the interface the peer is on.

-> ike ipsec policies set interface all mypolicy

Response

Command prompt.

ike ipsec policies set mode

Defines the mode filtering parameter value for the policy. The mode parameter specifies the encapsulation mode (tunnel or transport) that may be used for the connection (see Transport and Tunnel Encapsulation Modes” on page 5-50.)If no value is set for the mode parameter, tunnel mode is assumed.

Mgmt Class

Security (R/W)

Input Format

ike ipsec policies set mode <tunnel transport> <policyname>

Page 12-14

Efficient Networks®

Page 372
Image 372
Efficient Networks 107-0001-000 manual Ike ipsec policies set mode tunnel transport policyname