System information
Using the cycli Utility 313
cycli Commands
The following table shows the parameters that can be added using the add
command. If a parameter is shown in the Parameter Level 2 column, both the
first and the second words must be entered with the add command.
Table 10-2: Parameters That Work With the cycli add Command (Sheet 1 of 9)
Parameter Level 1 Parameter Level 2 Configures
group
1
Add a group to the list of local groups: add
group groupname. The group name is
automatically assigned a gid.
ipsec
2
conn Adds a VPN IPSec connection: add ipsec
conn connection_name. Then use the set
command to set the following for the left host:
a left host IP address [left IPaddress],
an optional alias for the left host [leftid
alias], an optional RSA key
[leftrsasigkey key], an optional
subnet IP address [leftsubnet
IPaddress], an optional next hop IP
address [leftnexthop IPaddress]. Use
the set command to set the following for the
right host: a right host IP address [right
IPaddress], an optional alias for the right
host [rightid alias], an optional RSA key
[rightrsasigkey key], an optional
subnet IP address [rightsubnet
IPaddress], an optional next hop IP
address [rightnexthop IPaddress].
key Adds a shared key: add ipsec key
key_name. Then use the set command to
set the key [set key_name key]. The key
can be in hexadecimal (with the 0x prefix
followed by any of: a-f, A-F, 0-9), in base
64 (with the 0s prefix followed by any base
64 number using a-z, A-Z, +, or \); or a text
string (entered with the 0t prefix followed by
text):