CONFIG Commands

set security ipsec tunnels name "123" IKE-mode PFS-enable { off on }

See page 94 for details about SafeHarbour IPsec tunnel capability.

set security ipsec tunnels name "123" IKE-mode invalid-spi-recovery { off on }

Enables the Gateway to re-establish the tunnel if either the Motorola Netopia® Gateway or the peer gateway is rebooted.

set security ipsec tunnels name "123" xauth enable {off on }

Enables or disables Xauth extensions to IPsec, when IKE-modeneg-methodis set to

aggressive. Default is off.

set security ipsec tunnels name "123" xauth username username

Sets the Xauth username, if Xauth is enabled.

set security ipsec tunnels name "123" xauth password password

Sets the Xauth password, if Xauth is enabled.

set security ipsec tunnels name "123" nat-enable { on off }

Enables or disables NAT on the specified IPsec tunnel. The default is off.

set security ipsec tunnels name "123" nat-pat-address ip-address

Specifies the NAT port address translation IP address for the specified IPsec tunnel.

set security ipsec tunnels name "123" local-id-type { IP-address Subnet Hostname ASCII }

Specifies the NAT local ID type for the specified IPsec tunnel, when Aggressive Mode is set.

259

Page 259
Image 259
Motorola 7.7.4 manual Set security ipsec tunnels name 123 xauth enable off on, 259