Chapter 4
Configuration via the Command Line Interface
4.8.3 Clear Command Group
What is it used for This command group comprises two commands, intended for clearing Security Associations:
clear all
clear session
The clear command group is accessed in the following way:
=>
=>ipsec [ipsec]=>clear [ipsec clear]=>
clear all This command clears all active Phase 1 and Phase 2 Security Associations for all defined peers. The command has no associated parameters. The successful execution of the command is notified to the user.
[ipsec clear]=>all ok.
[ipsec clear]=>
After clearing, the individual Security Associations can be established again, either by starting connections, or triggered by traffic complying with the policy.
clear session This command clears the IKE Security Association and all active Phase 2 Security Associations for one particular peer.
The peer is indicated by its name. The result of the command is notified to the user. In the following example no Security Association was active for the peer, named peer1, at the time of execution of the command:
[ipsec | clear]=>session |
name = | peer1 |
:IPSec | clear session name=peer1 |
Failed | to find session for peer peer1 |
[ipsec | clear]=> |
156 | |
|
