ZyXEL Communications ZyWALL USG-Series - Ipv4 Ipsec SA Commands (for Manual Keys); VPN Concentrator Commands

ZyXEL Communications ZyWALL USG-Series

426 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

Chapter 28 IPSec VPN

ZyWALL / USG (ZLD) CLI Reference Guide

191

28.2.3 IPv4 IPSec SA Commands (for Manual Keys)

This table lists the additional commands for IPSec SAs using manual keys (VPN connections using

manual keys).

28.2.4 VPN Concentrator Commands

This table lists the commands for the VPN concentrator.

Table 103 crypto map Commands: IPSec SAs (Manual Keys)

COMMAND DESCRIPTION

crypto map map_name

set session-key {ah <256..4095>

auth_key | esp <256..4095> [cipher

enc_key] authenticator auth_key}

Sets the active protocol, SPI (<256..4095>), authentication key and

encryption key (if any).

auth_key: You can use any alphanumeric characters or

,;|`~!@#$%^&*()_+\{}':./<>=-".

The length of the key depends on

the algorithm.

md5 - 16-20 characters

sha - 20 characters

sha256 - 32 characters

sha512 - 64 characters

enc_key: You can use any alphanumeric characters or

,;|`~!@#$%^&*()_+\{}':./<>=-". The length of the key depends on

the algorithm.

des - 8-32 characters

3des - 24-32 characters

aes128 - 16-32 characters

aes192 - 24-32 characters

aes256 - 32 characters

If you want to enter the key in hexadecimal, type “0x” at the beginning

of the key. For example, "0x0123456789ABCDEF" is in hexadecimal

format; in “0123456789ABCDEF” is in ASCII format. If you use

hexadecimal, you must enter twice as many characters.

The ZyWALL / USG automatically ignores any characters above the

minimum number of characters required by the algorithm. For example,

if you enter

1234567890XYZ for a DES encryption key, the ZyWALL /

USG only uses

12345678. The ZyWALL / USG still stores the longer

key.

local-ip ip Sets the local gateway address to the specified IP address.

peer-ip ip Sets the remote gateway address to the specified IP address.

Table 104 vpn-concentrator Commands: VPN Concentrator

COMMAND DESCRIPTION

show vpn-concentrator [profile_name] Shows the specified VPN concentrator or all VPN concentrators.

[no] vpn-concentrator profile_name Creates the specified VPN concentrator if necessary and enters sub-command

mode. The

no command deletes the specified VPN concentrator.

Table of Contents

Other manuals for ZyXEL Communications ZyWALL USG-Series

User Guide150 pages

Quick Start Guide8 pages

Application Notes187 pages

Related product manuals

Preview: ZyXEL Communications ZyWall

ZyXEL Communications ZyWall

Preview: ZyXEL Communications ZYWALL 5

ZyXEL Communications ZYWALL 5

Preview: ZyXEL Communications ZYWALL 35

ZyXEL Communications ZYWALL 35

ZyXEL Communications ZyWALL 310

Preview: ZyXEL Communications ZyWall 110

ZyXEL Communications ZyWall 110

Preview: ZyXEL Communications ZyWALL 1100

ZyXEL Communications ZyWALL 1100

Preview: ZyWALL 2 Plus

Preview: ZyWall ATP series

ZyWall ATP series

Preview: ZYWALL USG 20

Preview: ZYWALL USG CLI

Preview: ZyWALL USG 100 Series

ZyWALL USG 100 Series