Chapter 4
Configuration via the Command Line Interface
4.4.1 Peer parameters
Parameters table The following table shows the peer parameters:
Peer parameters
Parameter | Keyword | Description |
|
|
|
Peer name | name | Mandatory. Identifies the peer entity. |
|
|
|
Remote peer address | remoteaddr | Mandatory. The public IP address or |
|
| host name of the remote Security |
|
| Gateway. |
|
|
|
Backup remote peer | backupaddr | Optional. The public IP address or host |
address |
| name of a backup remote Security |
|
| Gateway. |
|
|
|
Exchange mode | exchmode | Mandatory. Determines the IKE |
|
| exchange mode |
|
|
|
Local identifier | localid | Mandatory. Identifies the local Security |
|
| Gateway during IKE negotiation. |
|
|
|
Remote identifier | remoteid | Mandatory. Identifies the remote |
|
| Security Gateway during the Phase 1 |
|
| negotiation. |
|
|
|
Physical interface | phyif | Mandatory. Identifies the |
|
| SpeedTouch™ physical interface to |
|
| which the local IPSec peer is tied. |
|
|
|
Descriptor | descr | Mandatory. The name of the Peer |
|
| Security Descriptor that applies to the |
|
| Phase 1 negotiation. Either a |
|
| descriptor or a |
|
| can be used. |
|
|
|
Authentication attribute | auth | Mandatory. Holds the authentication |
|
| method and its associated parameters. |
|
|
|
Client/server | client/ | Optional. Specifies a dialup VPN client/ |
| server | server descriptor |
|
|
|
Options | options | Optional. A number of options |
|
| influencing the VPN behaviour can be |
|
| set. |
|
|
|
For a basic IPSec configuration only a subset of the peer parameters need to be set to a specified value. Some parameters may remain unset.
Peer name [name] The peer name identifies the peer entity. This name only has local significance inside the SpeedTouch™. This parameter is not used in the IKE negotiations with the remote Security Gateway.
119 | |
|
