Set peer address, Config-crypto-map#set peer

SROS Command Line Interface Reference Guide	Crypto Map IKE Command Set

set peer <address>

Use the set peer command to set the IP address of the peer device. This must be set for multiple remote peers.

Syntax Description

<address>	Enter the IP address of the peer device. If this is not configured, it implies
	responder only to any peer.

Default Values

There are no default settings for this command.

Command Modes

(config-crypto-map)# Crypto Map Configuration Mode (IKE or Manual)

Functional Notes

If no peer IP addresses are configured, the entry will only be used to respond to IPSec requests; it cannot initiate the requests (since it doesn't know which IP address to send the packet to). If a single peer IP address is configured, the crypto map entry can be used to both initiate and respond to SAs.

The peer IP address is the public IP address of the device which will terminate the IPSec tunnel. If the peer IP address is not static, the product cannot initiate the VPN tunnel. By setting no peer IP address, the product can respond to an IPSec tunnel request in this case.

Usage Examples

The following example sets the peer IP address of 10.100.23.64:

(config-crypto-map)#set peer 10.100.23.64

5991-2114

401

HP 7000 dl Router manual Set peer address, Config-crypto-map#set peer

Models: 7000 dl Router

Crypto Map IKE Command Set

set peer <address>

Functional Notes

Usage Examples

(config-crypto-map)#set peer 10.100.23.64