15: Command Reference
SLCâ„¢ 8000 Advanced Console Manager User Guide 412
VPN Commands
set vpn
Syntax
set vpn
Description
Configures setting for an IPsec VPN tunnel.
Parameters
set vpn <parameters>
name <VPN Tunnel Name>
auth <rsa|psk|x509>
remotehost <Remote Host IP Address or Name>
remoteid <Authentication Name>
remotehop <IP Address>
remotesubnet <one or more subnets in CIDR notation>
remotesourceip <config|<CIDR>|IP Address Range|poolname>
localip <IP Address>
localid <Authentication name>
localhop <IP Address>
localsubnet <one or more subnets in CIDR notation>
localsourceip <config4|config6|IP Address>
ikenegotation <main|aggressive>
ikeenc <any|3des|aes|aes192|aes256>
ikeauth <any|sha1|md5|sha2_256|sha2_384|sha2_512>
ikedhgroup <any|dh2|dh5|dh14|dh15|dh16|dh17|dh18|dh19>
ikever <ikev1|ikev2>
espec <any|3des|aes|aes192|aes256>
espauth <any|sha1|md5|sha2_256|sha2_384|sha2_512|sha2_256_96>
espdhgroup <any|dh2|dh5|dh14|dh15|dh16|dh17|dh18|dh19>
lifetime <SA Lifetime in Seconds>
xauthclient <enable|disable>
xauthlogin <User Login>
ciscounity <enable|disable>
modeconfig <push|pull>
forceencaps <enable|disable>
deadpeerdelay <disable|1-300 seconds>
deadpeertimeout <5-1200 seconds>
deadpeeraction <restart|hold|clear>
Enter RSA public key or Pre-Shared Key of remote host:
set vpn key
Enter XAUTH password (any extra parameters will be ignored):
set vpn xauthpassword
Configure X.509 certificate for remote peer or local peer:
set vpn certificate local via <sftp|scp> rootfile <Cert Authority File>
To Next Page
Loading...
Need help?
General
