Name: Cisco IOS XR
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

Implementing Internet Key Exchange Security Protocol on Cisco IOS XR Software

How to Implement IKE Security Protocol Configurations for IPSec Networks

SC-38

Cisco IOS XR System Security Configuration Guide

Step 6

dns

primary-server

[

secondary-server

]

Example:

RP/0/RP0/CPU0:router(config-group)# dns 2.2.2.2

2.3.2.3

Specifies the primary and secondary Domain Name Service

(DNS) addresses.

• Use the primary-server argument to specify the IP

address of the primary DNS.

• (Optional) Use the secondary-server argument to

specify the IP address of the secondary DNS.

Step 7

domain

name

Example:

RP/0/RP0/CPU0:router(config-group)# domain

cisco.com

Specifies the DNS domain to which a group belongs.

• Use the name argument to specify the default name of

the DNS domain.

Step 8

firewall are-u-there

Example:

RP/0/RP0/CPU0:router(config-group)# firewall

are-u-there

Adds the Firewall-Are-U-There attribute to the server group

if your PC is running the Black Ice or Zone Alarm personal

firewalls.

Step 9

group-lock

Example:

RP/0/RP0/CPU0:router(config-group)# group-lock

Allows you to enter your extended authentication (Xauth)

username, including the group name, when preshared key

authentication is used with IKE.

Step 10

include-local-lan

Example:

RP/0/RP0/CPU0:router(config-group)#

include-local-lan

Configures the Include-Local-LAN attribute to allow a

nonsplit-tunneling connection to access the local

subnetwork at the same time as the client.

Step 11

max-logins

number-of-logins

Example:

RP/0/RP0/CPU0:router(config-group)# max-logins

Specifies the maximum number of concurrent logins that

are allowed for a certain user.

• Use the number-of-logins argument to specify the

number of logins. The value ranges from 0 to 16 and

384.

Step 12

max-users

number-of-users

Example:

RP/0/RP0/CPU0:router(config-group)# max-users

1200

Limits the number of connections to a specific server group.

• Use the number-of-users argument to specify the

number of connected users. The value ranges from 0 to

16 and 384.

Step 13

netmask

mask

Example:

RP/0/RP0/CPU0:router(config-group)# netmask

255.255.255.0

Sets the IP network mask.

• Use the mask argument to specify the IP network mask.

Step 14

pfs

Example:

RP/0/RP0/CPU0:router(config-group)# pfs

Configures a server to notify the client of the central-site

policy regarding whether PFS is required for any IP

Security (IPSec) Security Association (SA).

Command or Action Purpose

Questions and Answers:

Need help?

Do you have a question about the Cisco IOS XR and is the answer not in the manual?

Cisco IOS XR Specifications

General

Operating System	Cisco IOS XR
Architecture	Microkernel
High Availability	Yes
Type	Network operating system
Developed by	Cisco Systems
License	Proprietary
Programming Language	C, C++
Kernel	QNX
Supported Platforms	Cisco ASR9000, NCS series
Security Features	Role-Based Access Control (RBAC), Secure Boot, Encryption
Management Interface	CLI, SNMP, NETCONF, RESTCONF
Release Date	2004
Target Devices	High-end core routers, service provider edge routers, data center interconnect (DCI) routers
Supported Hardware	Cisco routers and switches
Networking Protocols	BGP, OSPF, IS-IS, MPLS
Virtualization Support	Virtualization-ready, supports network function virtualization (NFV) and containerization technologies.