ZyXEL Communications n/a 91

		Chapter 14 IPSec Commands
Table 34 IPSec Commands (continued)
COMMAND		DESCRIPTION
ipsec config	dnsServer <ip-address>	Sets the DNS server IP address to assign to remote users.
ipsec config	antiReplay <YesNo>	Enables or disables the replay detection.
ipsec config	keyManage <0:IKE1:Manual>	Sets the rule to use IKE (ISAKMP) or manual key
		management.
ipsec config	ike negotiationMode <0:Main	Sets the negotiation mode.
1:Aggressive>
ipsec config	ike authMethod	Sets the authentication method.
<0:PreSharedKey1:RSASignature>
ipsec config	ike certificate	Specifies the certificate the ZyXEL Device uses for
<certificate-name>		authentication.
ipsec config	ike preShareKey	Sets the pre-shared key.
<ascii0xhex>		ascii 0xhex: Enter characters in ASCII or in
		hexadecimal format. The minimum length is 8.
ipsec config	ike p1EncryAlgo	Sets the phase 1 encryption algorithm.
<0:DES1:3DES2:AES>
ipsec config	ike p1EncryKeyLen	Sets the phase 1 encryption key length.
<0:1281:1922:256
ipsec config	ike p1AuthAlgo	Sets the phase 1 authentication algorithm.
<0:MD51:SHA1>
ipsec config	ike p1SaLifeTime <seconds>	Sets the phase 1 IPSec SA life time.
ipsec config	ike p1KeyGroup <0:DH11:DH2>	Sets the phase 1 IKE SA key group.
ipsec config	ike activeProtocol	Sets the active protocol.
<0:AH1:ESP>
ipsec config	ike p2EncryAlgo	Sets the phase 2 encryption algorithm.
<0:Null1:DES2:3DES3:AES>
ipsec config	ike p2EncryKeyLen	Sets the phase 2 encryption key length.
<0:1281:1922:256
ipsec config	ike p2AuthAlgo	Sets the phase 2 authentication algorithm.
<0:MD51:SHA1>
ipsec config	ike p2SaLifeTime <seconds>	Sets the phase 2 IPSec SA life time.
ipsec config ike encap		Sets the encapsulation mode.
<0:Tunnel1:Transport>
ipsec config ike pfs <0:None1:DH12:DH2>		Sets Perfect Forward Secrecy for phase 2.
ipsec config manual activeProtocol		Sets the protocol the manual key rule uses.
<0:AH1:ESP>
ipsec config manual ah encap		Sets the encapsulation mode when using AH protocol in
<0:Tunnel1:Transport>		the manual rule.
ipsec config manual ah spi <decimal>		Sets the SPI information when using AH protocol in the
		manual rule.
		decimal: The maximum length is 9.

ipsec config manual ah authAlgo		Sets the authentication algorithm when using AH protocol
<0:MD51:SHA1		in the manual rule.
ipsec config manual ah authKey <ascii>		Sets the authentication key when using AH protocol in the
		manual rule.

	91
DSL & IAD CLI Reference Guide	91

Contents

www.zyxel.com Page About This CLI Reference Guide Intended Audience How To Use This Guide Contents Overview Index of Commands Documentation Feedback Document Conventions Warnings and Notes Syntax Conventions Table Title COMMAND DESCRIPTION Page Page Contents Overview Introduction Appendices and Index of Commands Page Page Page How to Access and Use the CLI 1.1 Accessing the CLI 1.1.1 Console Port 1.1.2Telnet 1.2 Logging in 1.3 Using Shortcuts and Getting Help Abbreviations 1.4 Saving Your Configuration 1.5Logging Out Page Common Commands 2.1 Change the Idle Timeout 2.2 Interface Information Page Page 2.3 Basic System Information Page Page Page 2.4 UTM and myZyXEL.com Page Page Page 2.5 Firewall 2.6 VPN 2.7 Dialing PPPoE and PPTP Connections Page Page Page Page IEEE 802.1Q/1P Commands 3.1 Command Summary 3.2 Command Examples IEEE 802.1x Commands 4.1 Command Summary 4.2 Command Examples abSecret123 Dial Backup Commands 5.1Command Summary 5.2 Command Examples Page Page Bandwidth Management 6.1 Command Summary Page 6.2 Command Examples Page Bridge Commands 7.1 Command Summary 7.2 Command Examples Page Page Certificate Commands 8.1 Command Summary Page Page 8.2 Default Values 8.3 Command Examples 8.3.1 Saving Certificates as PEM-encodedFormat 2Click Details and Copy to File Next Base-64 encoded X.509 (.CER) Finish Page CNM Agent Commands 9.1Command Summary 9.2 Command Examples Page Page VoIP DECT Commands 10.1 Command Summary 10.2 Command Examples Ethernet Commands 11.1 Command Summary 11.2 Command Examples Page Page Firewall Commands 12.1 Command Summary Page 12.2 Command Examples Page IP Commands 13.1 Command Summary Page Page Page Page Page Page Page 13.1.1 Content Filtering Categories 13.1.2 IP Command Examples Page Page Page Page Page Page Page Page IPSec Commands 14.1 Command Summary Page Page 14.2 swSkipOverlapIp Page 14.3 Command Examples LAN Interface Commands 15.1 Command Summary Page 15.2 Command Examples Page MyZyXEL.com Commands 16.1Command Summary 16.2 Country Codes Page Page Page Page Page 16.3 Command Examples Page Page Quality of Service (QoS) 17.1 Command Summary Page 17.2 Command Examples Page Page Page RADIUS Commands 18.1 Command Summary 18.2 Command Examples Page System Commands 19.1 Command Summary Page Page Page Page Page Page Page Page Page Page 19.2 Command Example 19.2.1Configuring Logging 19.2.2Displaying Logs 19.2.3 Log Command Example VoIP Commands 20.1 VoIP RTP Commands 20.1.1 VoIP RTP Command Examples 20.2 VoIP Relay to PSTN Commands 20.2.1 VoIP Relay to PSTN Command Examples 20.3 VoIP SIP Account Commands Page Page 20.3.1 VoIP SIP Account Command Examples 20.4 Analog Phone Commands Page Page 20.4.1 Analog Phone Command Examples 20.5 VoIP Speed Dial Commands 20.5.1 VoIP Speed Dial Command Examples 20.6 VoIP Common Settings Commands Page 20.6.1 VoIP Common Settings Command Examples 20.7 VoIP Auto-ProvisioningCommands 20.7.1 VoIP Auto-ProvisioningCommand Examples 20.8 VoIP PSTN Line Commands 20.8.1 VoIP PSTN Line Command Examples 20.9 VoIP Call Forwarding Commands 20.9.1 VoIP Call Forwarding Command Examples 20.10VoIP View RTP Commands 20.10.1 VoIP View RTP Command Examples 20.11 VoIP Auto-ProvisionCommands 20.12 VoIP Dial Plan Commands 20.12.1 VoIP Dial Plan Overview 20.12.1.1 Dial Rules Page 20.12.2 VoIP Dial Plan Command Summary 20.12.3 VoIP Dial Plan Command Examples Page Page WAN Commands 21.1 wan adsl Commands 21.1.1 wan adsl Examples 21.2 wan atm Commands 21.2.1 wan atm Examples 21.3wan backup Commands Page 21.3.1 wan backup Examples Page 21.4 wan callsch Commands 21.4.1 wan callsch Examples 21.5 wan hwsar Commands 21.5.1 wan hwsar Examples 21.6 wan node Commands Page Page Page 21.6.1 wan node Examples Page 21.7 wan tr069 Commands 21.7.1 wan tr069 Examples 21.8 wan zeroCfg Commands 21.8.1 wan tr069 Examples Page Page Wireless LAN Commands 22.1 Command Summary Page Page Page Page Page Page Page Page Page Page Page Page 22.2 Command Examples 22.2.1 WLAN Setup Example Page 22.2.2 RADIUS Example asdfkjas123 Page Page Legal Information Copyright Disclaimer Trademarks Certifications ZyXEL Limited Warranty Note Registration Page Customer Support Required Information Corporate Headquarters (Worldwide) China - ZyXEL Communications (Beijing) Corp China - ZyXEL Communications (Shanghai) Corp Costa Rica Czech Republic Denmark Finland France Germany Hungary India Japan Kazakhstan Malaysia North America Norway Poland Russia Singapore Spain Sweden Taiwan Thailand Turkey Ukraine United Kingdom Index of Commands