Manualshelf

Command Reference Guide

ManualsBrandsHP ManualsRoutersHP 5000 Router Series
2141214221432144214521462147214821492150
154ike proposal 3Com Router 5000 Family and Router 6000 Family
Command Reference
ike proposal
Purpose Use the ike proposal command to define an IKE proposal.
Use the undo ike proposal command to delete an IKE proposal.
Syntax ike proposal proposal-number
undo ike proposal proposal-number
Parameters proposal-number
IKE proposal number. Valid values are 1 to 100. This
value also stands for the priority. A smaller value stands
for a higher priority. When perform an IKE negotiation,
the system matches IKE proposals by the proposal
number, the one with the smallest proposal number
first.
Example Define IKE proposal 10.
[3Com] ike proposal 10
[3Com-ike-proposal-10] authentication-algorithm md5
[3Com-ike-proposal-10] authentication-method pre-share
[3Com-ike-proposal-10] sa duration 5000
View This command can be used in the following views:
System view
Description The system provides a default IKE proposal with the lowest priority.
Executing this command in system view will enter the IKE proposal view, where you
can set parameters such as authentication method, encryption algorithm,
authentication algorithm, DH group ID, and sa duration for this IKE proposal using
the
authentication-method, encryption-algorithm, dh,
authentication-algorithm, and sa duration command.
The Default IKE proposal has the following default parameters:
Encryption algorithm: DES-CBC
Authentication algorithm: HMAC-SHA1
Authentication method: Pre-Shared Key
DH group ID: MODP_768
SA duration: 86400 seconds
These parameters will be used to establish a security tunnel once these parameters
are confirmed by the both sides of the negotiation.