Manualshelf

User guide

ManualsBrandsEfficient Networks ManualsComputer equipmentRouter family Command line interface
241242243244245246247248249250
250 Chapter 5. Command Line Interface Reference
IKE IPSEC POLICIES SET DESTPORT
Defines a destination port filtering parameter value for the policy. The destination port parameter requires a
specific destination port for the data or allows any destination port (*). (Because port numbers are TCP and UDP
specific, a port filter is effective only when the protocol filter is TCP or UDP.)
ike ipsec policies set destport <PortNumber | TELNET | HTTP | SMTP | TFTP | *> <PolicyName>
PortNumber Destination port whose data is allowed by the policy. The port can be specified by one of
TELNET the listed names or by its number. To allow data through for any destination port, specify an
HTTP asterisk (*).
SMTP
TFTP
*
PolicyName Name of the IPsec policy to which the destination port parameter value is added. To see the
policy names, use the ike ipsec policies list command.
Examples:
ike ipsec policies set destport * mypolicy
ike ipsec policies set destport http webpolicy
IKE IPSEC POLICIES SET MODE
Defines the mode filtering parameter value for the policy. The mode parameter specifies the encapsulation mode
(tunnel or transport) that may be used for the connection (see Transport and Tunnel Encapsulation Modes, on page
119). If no value is set for the mode parameter, tunnel mode is assumed.
ike ipsec policies set mode <TUNNEL | TRANSPORT> <PolicyName>
TUNNEL Encapsulation method required for the connection. The default is TUNNEL.
TRANSPORT
PolicyName Name of the IPsec policy to which the encapsulation mode parameter value is added. To see
the policy names, use the ike ipsec policies list command.
Example: ike ipsec policies set mode transport rtr2rtrpolicy
IKE IPSEC POLICIES SET PEER
Defines a peer filtering parameter value for the policy. The peer parameter specifies an IKE peer that may be used
for the connection. (The peer must have been defined by IKE peer commands; see IKE Peer Commands, on page
124.)
ike ipsec policies set peer <PeerName> <PolicyName>
PeerName Name of an IKE peer. To see the IKE peer names, use the ike peers list command.
PolicyName Name of the IPsec policy to which the peer parameter value is added. To see the policy
names, use the ike ipsec policies list command.
Example: ike ipsec policies set peer my_aggressive_peer mypolicy