SROS Command Line Interface Reference Guide

IKE Policy Command Set

 

 

peer [<ip address> any]

Use the peer command to enter the IP address of the peer device. Repeat this command for multiple peers. Use the any keyword if you want to set up a policy that will initiate or respond to any peer.

Syntax Description

<ip address>

Enter a peer IP address.

any

Allow any peer to connect to this IKE policy.

Default Values

There are no default settings for this command.

Command Modes

(config-ike)#

IKE Policy Configuration Mode

Functional Notes

An IKE policy is incomplete unless one of the peer commands is specified. Only one IKE policy can be configured with peer any.

Usage Examples

The following example sets multiple peers on an IKE policy for an initiate and respond policy using pre-shared secret, des, md5, and Diffie-Hellman group 1:

(config)#crypto ike policy 100 (config-ike)#peer 63.97.45.57 (config-ike)#peer 63.105.15.129 (config-ike)#peer 192.168.1.3 (config-ike)#respond anymode

(config-ike)#initiate main

The following example sets up a policy allowing any peer to initiate using pre-shared secret, des, md5, and Diffie-Hellman group 1.

(config)#crypto ike policy 100

(config-ike)#peer any

(config-ike)#respond anymode

(config-ike)#initiate main

5991-2114

© Copyright 2005 Hewlett-Packard Development Company, L.P.

383

Page 383
Image 383
HP 7000 dl Router manual Peer ip address any, Config#crypto ike policy, Config-ike#respond anymode