
258 Appendix G Command Interpreter
N0115791
chk_input <0~255> Adjusts autotimer to check if any inbound
IPsec traffic has passed during the
specified period. If not, the BCM50a
Integrated Router disconnects the tunnel.
show_runtime sa Displays runtime phase 1 and phase 2
SA information.
spd When a dynamic rule accepts a request
and a tunnel is established, a runtime
SPD is created according to the peer’s
local IP address. This command displays
these runtime SPDs.
updatePeerIp Forces the system to immediately update
IPSec rules that use a domain name as
the secure gateway IP address.
display <rule index> Displays the specified IPSec rule.
policyDisplay <rule index> Displays the specified IPSec rule’s IP
policies.
dial <rule index> <policy index> Triggers the specified phase two
connection.
route lan <on|off> After IPSec processes a packet and
sends it to the LAN side, this switch
controls whether or not IPSec can be
applied to the packet again.
wan <on|off> After IPSec processes a packet and
sends it to the WAN side, this switch
controls whether or not IPSec can be
applied to the packet again.
load <rule index> Edit an IPSec branch office rule with the
specified rule number.
save Saves the IPSec branch office rule.
config Uses these commands to configure the
IPSec rule.
name <name> Sets the name of the rule.
active <Yes|No> Turns the rule on or off.
negotiationMode <0:Main |
1:Aggressive>
Sets the negotiation mode.
natTraversal <Yes|No> Turns NAT traversal on or off.
p1MultiPro <Yes|No> Turns phase 1 multiple proposal on or off.
Table 60 IPSec commands
Command Description