Zte ZXR10 - Set Sa Lifetime

177 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter6IPSecIPv4NetworkSafecommands

CommandModesDynamicsecurityconguration,IKEsecurityconguration

Syntaxsetpfslevelkey-identity

nosetpfslevel

Syntax

Description

key-identityPFSprotectingthekeyandidentity

DefaultsThiscommandisdisabledbydefault.

Instructions�Theplatformversion4.8.01andupgradeversionssupportthe

command.

�ItisimplementedmainlyonGARcurrently.

�Thepolicyofmanualtypecannotusethiscommand.Ifitis

key-identity,therststagenegotiationmustbeinmainmode

andcanprovideprotectionforonlyonedataow.Thatis,

therecanbeonlyoneruleinACL.

ExampleThisexampledescribedhowtocreateanIPSecsecuritypolicy

namedmymapanddesignatePFSprotectionforthispolicy.

ZXR10(config)#cryptomapmymap123isakmp

ZXR10(config-crypto-map)#setpfslevelKey-identity

ZXR10(config-crypto-map)#nosetpfslevel

Related

Commands

showcryptomap

cryptomap

setsalifetime

PurposeUsethiscommandtodesignatethelifetimeforpolicy.

CommandModesDynamicsecuritycongurationandIKEsecurityconguration

Syntaxsetsalifetime{seconds<seconds>|kilobytes<kilobytes>}

nosetsalifetime{seconds|kilobytes}

Syntax

Description

<seconds>

Lifetime,inseconds,range:120~86400,

default:28800seconds

<kilobytes>

Lifetime,inkilobytes,range:

2560~4294900000,default:1843200000

kilobytes

DefaultsThelifetimeistheglobalconguredlifetimevaluebydefault.

Instructions�Theplatformversion4.8.01andupgradeversionssupportthis

command.

�ItisimplementedmainlyonGARcurrently.

�Thepolicyofmanualtypecannotusethiscommand.Lifetime

rangeis:120864000(inseconds),or2564294900000(inkilo-

bytes).

ExampleThisexampledescribedhowtocreateanIPSecsecuritypolicy

namedanddesignatethelifetimeforthispolicy.

CondentialandProprietaryInformationofZTECORPORATION77

Table of Contents

Other manuals for Zte ZXR10

User Manual117 pages

Handling Manual307 pages

Instruction Manual90 pages

Related product manuals

Preview: Zte ZXR10 ZSR

Preview: Zte ZXR10 GER

Preview: Zte ZXR10 2600

Preview: Zte ZXR10 T600

Preview: Zte ZXR10 ZSR V2

Zte ZXR10 ZSR V2

Zte ZXR10 3800-8

Zte ZXR10 2800-4

Preview: Zte ZXR10 1800-2S

Zte ZXR10 1800-2S

Preview: Zte ZXR10 M6000 Series

Zte ZXR10 M6000 Series

Preview: Zte ZXR10 ZSR V2 Series

Zte ZXR10 ZSR V2 Series

Preview: Zte ZXHN F660

Preview: Zte ZXHN H108L