System information

CHAPTER

Configuration - IPSec Mode

The IPSecConfiguration commands allow the user to configure the VPN IPSec parameters.

Enter this sub-group with the (config)# ipsec vpn_ipsec command from the Configure mode.

The IPSec commands are represented by the (config-ipsec-1)# prompt.

Note: First a connection must be created. See ipsec net-to-host command on page 4-21, or ipsec net-to-

net command on page 4-22.

For an example of Configuring an IPSec Connection, see Example of IPSec Connection

Configuration command on page 13-22.

IPSec Commands

 aggressive-mode  key

 authentication  lifetime

 dev-name  local-subnet

 do  max-retries

 dpd-delay  mode

 dpd-enable  net-type

 dpd-timeout  netbios

 encryption  netbios remote-ip

 end  no commands

 exit  reconnect

 group  rekey

 hash  remote-ip

 history  remote-subnet

 ip default-route  schedule-availability

 ip rip  session-key

 ip route metric  set-pfs

 ipsec-conn  transform-set

 ipsec-manual