C613-50631-01 Rev A Command Reference for IE340 Series 2878
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
AMF AND AMF PLUS COMMANDS
ATMF
VIRTUAL-LINK PROTECTION
atmf virtual-link protection
Overview Use this command to add protection to an existing AMF virtual-link. Secure AMF
virtual-links encapsulate the L2TPv3 frames of the virtual-link with IPsec.
Note that AlliedWare Plus CentreCOM Series switches are AMF Edge nodes and do
not support virtual links or crosslinks. This is because each edge node can only
have a single physical AMF link.
Use the no variant of this command to remove protection from an AMF virtual-link.
Syntax
atmf virtual-link id <1-4094> protection ipsec key [8]
<key-string>
no atmf virtual-link id <1-4094> protection
Default Protection is off by default.
Mode Global Configuration
Usage notes The following limitations need to be considered when creating secure virtual-links.
• Switch devices support a maximum of 20 downstream AMF nodes when
using a secure virtual-link as an uplink.
• When there are two or more AMF members behind a shared NAT device,
only one of the members will be able to use secure virtual-links.
• An AMF Multi-tenant environment supports a maximum cumulative total of
1200 secure virtual-links across all AMF containers.
Secure virtual-links are only supported on the following device listed in the table
below. There is also a limit to the number of links these devices support.
Parameter Description
id Specify the link ID.
<1-4094>
Link ID in the range 1 to 4094,
protection
Protection is on for this link.
ipsec
Security provided using IPsec.
key
Set the shared key.
8
Specifies a string in an encrypted format instead of plain text. The
running config will display the new password as an encrypted
string even if password encryption is turned off.
<key-string>
Specify the shared key for the link.
To Next Page
Loading...
Need help?
General
