HP 7000 dl Router manual Local-id address asn1-dn fqdn user-fqdnipaddress or name

local-id [address asn1-dn fqdn user-fqdn]<ipaddress or name>

Use the local-idcommand to set the local ID for the IKE policy. This setting overrides the system local ID setting (set in the Global using the crypto ike local-id address command).

Syntax Description

Default Values

By default, local-id is not defined.

Command Modes

Functional Notes

The local-id for a particular IKE policy can be set in two ways. The first (default) method is to use the global system command:

(config)#crypto ike local-id address

This command, which by default is executed on start-up, makes the local-id of an IKE policy equal to the IPv4 address of the interface on which an IKE negotiation is occurring. This is particularly useful for products that could have multiple public interfaces.

The second method is to use the IKE policy command:

(config-ike)#local-id [address fqdn user-fqdn] <ipaddress or fqdn>

This policy-specific command allows you to manually set the local-id for an IKE policy on a per-policy basis. You can use both methods simultaneously in the product. Several IKE policies can be created, some of which use the default system setting of the IPv4 address of the public interface. Others can be set to override this system setting and manually configure a local-id specific to those policies. When a new IKE policy is created, they default to no local-id. This allows the system local-id setting to be applied to the policy.