User's Manual
258 Appendix G Command Interpreter
N0115791
chk_input <0~255>
Adjusts autotimer to check if any inbound
IPsec traffic has passed during the
specified period. If not, the BCM50a
Integrated Router disconnects the tunnel.
show_runtime sa
Displays runtime phase 1 and phase 2
SA information.
spd
When a dynamic rule accepts a request
and a tunnel is established, a runtime
SPD is created according to the peer’s
local IP address. This command displays
these runtime SPDs.
updatePeerIp
Forces the system to immediately update
IPSec rules that use a domain name as
the secure gateway IP address.
display <rule index>
Displays the specified IPSec rule.
policyDisplay <rule index>
Displays the specified IPSec rule’s IP
policies.
dial <rule index> <policy index>
Triggers the specified phase two
connection.
route lan <on|off>
After IPSec processes a packet and
sends it to the LAN side, this switch
controls whether or not IPSec can be
applied to the packet again.
wan <on|off>
After IPSec processes a packet and
sends it to the WAN side, this switch
controls whether or not IPSec can be
applied to the packet again.
load <rule index>
Edit an IPSec branch office rule with the
specified rule number.
save
Saves the IPSec branch office rule.
config
Uses these commands to configure the
IPSec rule.
name <name>
Sets the name of the rule.
active <Yes|No>
Turns the rule on or off.
negotiationMode <0:Main |
1:Aggressive>
Sets the negotiation mode.
natTraversal <Yes|No>
Turns NAT traversal on or off.
p1MultiPro <Yes|No>
Turns phase 1 multiple proposal on or off.
Table 60 IPSec commands
Command Description