•
•
Ste
p
Description Command Keys
35 Specify protocol (optionally). esr(config-ipsec-
proposal)#protocol <PROTOCOL>
<PROTOCOL> – encapsulation
protocol, takes the following
values:
ah – this protocol
performs only traffic
authentication, data
encryption is not
performed;
esp – this protocol
authenticates and
encrypts traffic.
Default value: esp
36 Configuration config-ipsec-proposal esr(config)# security ipsec policy
<NAME>
<NAME> – IPsec policy name,
set by the string of up to 31
characters.
37 Bind the policy to profile. esr(config-ipsec-policy)# proposal
<NAME>
<NAME> – IPsec protocol
profile name, set by the string
of up to 31 characters.
38 Specify the lifetime of IPsec tunnel
(optionally).
esr(config-ipsec-policy)# lifetime
{ seconds <SEC> |
packets <PACKETS> | kilobytes
<KB> }
<SEC> – IPsec tunnel lifetime
after which the re-approval is
carried out.
Takes values in the range of
[1140..86400] seconds.
Default value: 540
<PACKETS> – number of
packets after transmitting of
which the IPsec tunnel re-
approval is carried out.
Takes values in the range of
[4..86400].
Default value: disabled.
<KB> – traffic amount after
transmitting of which the IPsec
tunnel re-approval is carried
out. Takes values in the range
of [4..86400] seconds.
Default value: disabled.
To Next Page
Loading...
