Panel | |
---|---|
In this section:
|
This section details the commands to configure an IPsec Peer. See IPsec for Signaling for in-depth feature description.
Mandatory parameters required to configure the IPsec.
Code Block | ||
---|---|---|
| ||
% set addressContext <addressContext name> ipsec peer <peer name> ipAddress <ipAddress> localIdentity <fqdn | ipV4Addr | ipV6Addr> preSharedKey <DES3 encrypted string> |
Optional parameters:
Code Block | ||
---|---|---|
| ||
% set addressContext <addressContext name> ipsec peer <peer name> authType <psk | rsaSig> localCertificate <sbcCertName> <peerCertName> <caCertName1> protectionProfile <profile_name> protocol <any | ikev1 | ikev2> remoteIdentity <fqdn | ipV4Addr | ipV6Addr> authType <psk | rsaSig> localCertificate <sbcCertName> remoteCertificate <peerCertName> remoteCaCertificate <caCertName1> |
Caption | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
preSharedKey can be one of
|
The following example creates an IPsec peer named "peer2
":
Code Block | ||
---|---|---|
| ||
% set addressContext default ipsec peer peer2 ipAddress 10.20.30.140 preSharedKey 12345678 localIdentity type ipV4Addr ipAddress 10.20.30.134 % show addressContext default ipsec peer peer2 { ipAddress 10.20.30.140; localIdentity { type ipV4Addr; ipAddress 10.20.30.134; } preSharedKey $3$jCFw27QxeFA9KSe4Ym01FechIP3sXsZY; |