System information
13-20 Adit 3000 CLI - Release 1.6
Configuration - IPSec Mode
session-key
session-key
Use the IPSec session-key command to specify the parameters needed during manual key exchange
(ipsec-manual). No command.
session-key ah
Syntax: (config-int-ser-{n})# session-key {inbound|outbound} ah spi
authentication [md5|sha] hex-key-data
Example: (config-int-ser-1)# rekey lifetime 3 margin 500 percent 200
Supported Platforms:
Adit 3104, Adit 3200, Adit 3500
set-pfs
Use the IPSec set-pfs command to set the rekey lifetime, rekey margin and rekey fuzz percent.
Syntax: (config-int-ser-{n})# rekey lifetime seconds margin margin
percent percent
Example: (config-int-ser-1)# rekey lifetime 3 margin 500 percent 200
Supported Platforms:
Adit 3104, Adit 3200, Adit 3500
Field Definition
inbound Set the inbound (local) IPSec key.
outbound Set the outbound (remote) IPSec key.
ah spi Set the Authentication Header Security Parameter Index. 100-FFF
md5 Set authentication to MD5.
sha Set authentication to Secure Hash Algorithm.
Field Definition
seconds Set the connection rekey lifetime. Range is 1-28800 seconds, with a
default of 3600.
margin Set the rekey margin number. Range is 1-540, with a default of 540.
percent Set the rekey fuzz percent. Range 1-200, with a default of 100.