Virtual Private Networks (VPN) IPsec
IX10 User Guide
336
n
other: Matches an unlisted protocol.
If other is used, set the number of the protocol:
(config vpn ipsec tunnel ipsec_example policy 0)> remote
protocol_other int
(config vpn ipsec tunnel ipsec_example policy 0)>
Allowed values are an integer between 1 and 255.
19. (Optional) You can also configure various IPsec related time out, keep alive, and related values:
a. Change to the root of the configuration schema:
(config vpn ipsec tunnel ipsec_example policy 0)> ...
(config)>
b. Use the ? to determine available options:
(config)> vpn ipsec advanced ?
Advanced: Advanced configuration that applies to all IPsec tunnels.
Parameters Current Value
---------------------------------------------------------------------
---------
debug none Debug level
ike_fragment_size 1280 Maximum IKE fragment size
ike_retransmit_tries 5 IKE retransmit tries
keep_alive 40s NAT keep alive time
Additional Configuration
---------------------------------------------------------------------
----------
connection_retry_timeout Connection retry timeout
connection_try_interval Connection try interval
ike_timeout IKE timeout
(config)>
Generally, the default settings for these should be sufficient.
c. You can also enable debugging for IPsec:
(config)> vpn ipsec advanced debug value
(config)>
where value is one of:
n
none
n
basic_auditing
n
detailed_control
n
generic_control
n
raw_data
n
sensitive_data
To Next Page
Loading...
