IPSEC COMMANDS
E-DOC-CTC-20100729-0006 v3.0.Copyright 2011Technicolor. All rights reserved.
This document contains Technicolor proprietary and confidential information. Passing on and copying of this document, use,
extraction and communication of its contents, is not permitted without written authorization from Technicolor.
637
ipsec connection descriptor modify
Changes a phase 2 (IPSec) security descriptor.
SYNTAX:
ipsec connection descriptor
modify
name = <{AES_SHA1_TUN|AES_MD5_TUN|
AES_SHA1_PFS_TUN|AES_MD5_PFS_TUN|
DES_SHA1_TUN|DES_MD5_TUN|AES_SHA1_Adv_TUN|
NullEnc_SHA1_TUN}>
[crypto = <{DES|3DES|AES|NULL}>]
[keylen = <{0|128|192|256}>]
[integrity = <{HMAC-MD5|HMAC-SHA1}>]
[pfs = <{disabled|enabled}>]
[lifetime_secs = <number>]
[lifetime_kbytes = <number>]
[encapsulation = <{tunnel|transport}>]
where:
name Security descriptor profile to change. REQUIRED
crypto Specify the crypto algorithm to use. OPTIONAL
keylen Specify the key length for the crypto algorithm. OPTIONAL
integrity Specify the integrity algorithm to use. OPTIONAL
pfs Enable/Disable perfect forward secrecy (PFS). OPTIONAL
lifetime_secs The lifetime expressed in seconds (Lifetime must differ from
0 otherwise unset).
OPTIONAL
lifetime_kbytes The lifetime expressed in kilobytes (Lifetime must differ
from 0 otherwise unset).
OPTIONAL
encapsulation Transport or Tunnel mode. OPTIONAL
To Next Page
Loading...
Need help?
General
