Command reference ipsec
Digi TransPort WR Routers User Guide
389
ike-authentication
The IKE authentication type for this IPsec tunnel.
Accepted values can be multiple values of sha1, sha256 and sha384. The default value is sha1.
ike-diffie-hellman
The IKE Diffie-Hellman group for this IPsec tunnel. Diffie-Hellman is a public-key cryptography protocol
for establishing a shared secret over an insecure communications channel. Diffie-Hellman is used with
Internet Key Exchange (IKE) to establish the session keys that create a secure channel.
Accepted values can be multiple values of group5, group14, group15, group16 and group20. The
default value is group14.
ike-lifetime
The lifetime for the IKE key, in seconds.
Accepted value is any integer from 180 to 4294967295. The default value is 4800.
ike-tries
The number of attempts to negotiate this IPsec tunnel before failing.
Accepted value is any integer from 0 to 100. The default value is 3.
dpddelay
Dead peer detection transmit delay.
Accepted value is any integer from 1 to 3600. The default value is 30.
dpdtimeout
Timeout, in seconds, for dead peer detection.
Accepted value is any integer from 1 to 3600. The default value is 150.
dpd
Enables or disables dead peer detection. Dead Peer Detection (DPD) is a method of detecting a dead
Internet Key Exchange (IKE) peer. The method uses IPsec traffic patterns to minimize the number of
messages required to confirm the availability of a peer.
Value is either on or off. The default value is off.
metric
The metric for the IPsec route. The metric defines the order in which the device uses routes if there
are two routes to the same destination. In such a case, the device uses the IPsec route with the
smaller metric.
Accepted value is any integer from 0 to 255. The default value is 10.
xauth-username
XAuth identity used to reply to XAuth requests
Accepted value is any string up to 128 characters.
xauth-password
XAuth password used to reply to XAuth requests
To Next Page
Loading...
