•
•
•
•
Step Description Command Keys
15 Bind IKE profile to IKE policy. esr(config-ike-policy)# proposal
<NAME>
<NAME> – IKE protocol name,
set by the string of up to 31
characters.
16 Specify authentication key (mandatory
if pre-shared-key is selected as
authentication mode)
esr(config-ike-policy)# pre-
shared-key ascii-text<TEXT>
<TEXT> – string [1..64] ASCII
characters.
17 Create an IKE gateway and switch to its
configuration mode.
esr(config)# security ike gateway
<NAME>
<NAME> – IKE protocol
gateway name, set by the string
of up to 31 characters.
18 Bind IKE policy to IKE gateway. esr(config-ike-gw)# ike-policy
<NAME>
<NAME> – IKE protocol policy
name, set by the string of up to
31 characters.
19 Specify IKE version (optionally). esr(config-ike-gw)# version
<VERSION>
<version> – IKE protocol
version: v1-only or v2-only.
Default value: v1-only
20 Set the route-based mode. esr(config-ike-gw)# mode route-
based
21 Specify the action for
DPD (optionally).
esr(config-ike-gw)# dead-peer-
detection action <MODE>
<MODE> – DPD operation
mode:
restart – connection
restarts;
clear – conection stops;
hold – connection holds;
none – the mechanism is
disabled, no action is
taken.
Default value: none
22 Specify the interval between sending
messages via DPD mechanism
(optionally).
esr(config-ike-gw)# dead-peer-
detection interval <SEC>
<SEC> – interval between
sending messages via DPD
mechanism, takes values of
[1..180] seconds.
Default value: 2
To Next Page
Loading...
