Chapter 4
Configuration via the Command Line Interface
4.3.1 Peer Security Descriptor Parameters
Parameter table The following table summarizes the parameters comprised in the peer security descriptor. The table also indicates the keyword used in the CLI for each parameter:
Parameter | Keyword | Description | |
|
|
| |
Cryptographic function | crypto | Cryptographic function used for | |
encrypting the IKE messages | |||
|
| ||
|
|
| |
Key length | keylen | Length of the cryptographic key. | |
|
|
| |
Hash function | integrity | Hashing function used for message | |
authentication | |||
|
| ||
|
|
| |
group | |||
|
|
| |
|
| The lifetime of the IKE Security | |
IKE SA lifetime | lifetime_secs | Association. At expiration of this | |
|
| period | |
|
|
|
Example A Peer Security Descriptor is a text string, comprising the parameters described in the table above. An example is shown here:
3DES
MD5
MODEP1024
Lifetime 3600s
IPsec SA lifetime
Hash function
Cryptographic function
Peer Descriptor name This name is used internally to identify the Peer Security Descriptor. [name]
111 | |
|
