Manualshelf

Concept Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series 207 Access Points
311312313314315316317318319320
crypto-local isakmp key <key> address <ipaddr> netmask <mask>
For a static IP controller that responds to IKE Aggressive-mode for Site-Site VPN:
(host) (config)crypto-local ipsec-map <name2> <priority>
src-net <ipaddr> <mask>
dst-net <ipaddr> <mask>
peer-ip 0.0.0.0
peer-fqdn fqdn-id <peer_id_fqdn>
vlan <id>
trusted enable
For the Pre-shared-key:
crypto-local isakmp key <key> fqdn <fqdn-id>
For a static IP controller that responds to IKE Aggressive-mode for Site-Site VPN with One PSK for All FQDNs:
(host) (config)crypto-local ipsec-map <name2> <priority>
src-net <ipaddr> <mask>
peer-ip 0.0.0.0
peer-fqdn any-fqdn
vlan <id>
trusted enable
For the Pre-shared-key for All FQDNs:
crypto-local isakmp key <key> fqdn-any
Related Commands
Modification
crypto_local isakmp dis-
able-ipcomp
Globally disable IP compression on all site-to-site VPNs between master and
local controllersby disabling compression from that master controller.
Command History
Release Modification
ArubaOS 3.0 Command introduced.
ArubaOS 6.1 The peer-cert-dn and peer-fqdn parameters were introduced.
The set pfs command introduced the group19 and group20 parameters.
ArubaOS 6.3 The set security-association lifetime kilobytesand Diffie-Hellman set pfs
group 14 parameters were added.
ArubaOS 6.4.4.0 The ip access-group and ip-compression parameters are introduced.
Dell Networking W-Series ArubaOS 6.5.x | Reference Guide crypto-local ipsec-map | 319