SROS Command Line Interface Reference Guide

Global Configuration Mode Command Set

 

 

ip crypto

Use the ip crypto command to enable Secure Router OS VPN functionality and allow crypto maps to be added to interfaces. Use the no form of this command to disable the VPN functionality.

Note

Disabling the Secure Router OS security features (using the no ip crypto command) does

 

not affect VPN configuration settings (with the exception of the removal of all crypto maps

 

from the interfaces). All other configuration parameters will remain intact, and VPN

 

functionality will be disabled.

 

 

 

 

Note

For VPN configuration example scripts, refer to the technical support note VPN

 

Configuration Guide located on the ProCurve SROS Documentation CD provided with

 

your unit.

 

 

Syntax Description

No subcommands.

Default Values

By default, all Secure Router OS VPN functionality is disabled.

Command Modes

(config)#

Global Configuration Mode

Functional Notes

VPN-related settings will not go into effect until you enable VPN functionality using the ip crypto command. The Secure Router OS allows you to perform all VPN-related configuration prior to enabling ip crypto, with the exception of assigning a crypto map to an interface. The no ip crypto command removes all crypto maps from the interfaces. Enabling ip crypto enables the IKE server on UDP port 500. The no form of this command disables the IKE server on UDP port 500.

Usage Examples

The following example enables VPN functionality:

(config)#ip crypto

5991-2114

© Copyright 2005 Hewlett-Packard Development Company, L.P.

262

Page 261 Page 263
Page 262
Image 262
HP 7000 dl Router manual Ip crypto
Page 261 Page 263
Top Page Image Contents