User's Manual 876 Document #: LTRT-89730
Mediant 3000
Parameter Description
IPsecSATable_SourcePort, IPsecSATable_DestPort,
IPsecSATable_Protocol, IPsecSATable_Phase1SaLifetimeInSec,
IPsecSATable_Phase2SaLifetimeInSec,
IPsecSATable_Phase2SaLifetimeInKB, IPsecSATable_DPDmode,
IPsecSATable_IPsecMode, IPsecSATable_RemoteTunnelAddress,
IPsecSATable_RemoteSubnetIPAddress,
IPsecSATable_RemoteSubnetPrefixLength,
IPsecSATable_InterfaceName;
[ \IPsecSATable ]
Note: For a detailed description of the table, see ''Configuring IP Security
Associations Table'' on page 188.
IPSec Proposal Table
IP Security Proposal
Table
[IPSecProposalTable]
The table defines up to four IKE proposal settings, where each proposal
defines an encryption algorithm, an authentication algorithm, and a Diffie-
Hellman group identifier.
[ IPsecProposalTable ]
FORMAT IPsecProposalTable_Index =
IPsecProposalTable_EncryptionAlgorithm,
IPsecProposalTable_AuthenticationAlgorithm,
IPsecProposalTable_DHGroup;
[ \IPsecProposalTable ]
For example:
IPsecProposalTable 0 = 3, 2, 1;
IPsecProposalTable 1 = 2, 2, 1;
In the example above, two proposals are defined:
 Proposal 0: AES, SHA1, DH group 2
 Proposal 1: 3DES, SHA1, DH group 2
Note: For a detailed description of the table, see ''Configuring IP Security
Proposal Table'' on page 187.
58.4.8 OCSP Parameters
The Online Certificate Status Protocol (OCSP) parameters are described in the table
below.
Table 58-31: OCSP Parameters
Parameter Description
Enable OCSP Server
[OCSPEnable]
Enables or disables certificate checking using OCSP.
 [0] Disable (default)
 [1] Enable
For a description of OCSP, see Configuring Certificate Revocation
Checking (OCSP).
Primary Server IP
[OCSPServerIP]
Defines the IP address of the OCSP server.
The default IP address is 0.0.0.0.
Secondary Server IP
Defines the IP address (in dotted-decimal notation) of the secondary
OCSP server (optional).
To Next Page
Loading...
Need help?
General
