Identity; Reset Gdoi Gm - H3C MSR Series Command Reference Manual

[Sysname-ipsec-policy-gdoi-map-1] group abc
Related commands
gdoi gm group
ipsec { ipv6-policy | policy }

identity

Use identity to configure an ID for a GDOI GM group.
Use undo identity to restore the default.
Syntax
identity { address ip-address | number number }
undo identity
Default
No ID is configured for a GDOI GM group.
Views
GDOI GM group view
Predefined user roles
network-admin
Parameters
address ip-address: Specifies any valid IPv4 address to identify the GDOI GM group.
number number: Specifies a number in the range of 0 to 2147483647 to identify the GDOI GM
group.
Usage guidelines
If you execute this command multiple times, the most recent configuration takes effect.
Only GMs in the same GDOI GM group can communicate with each other.
Examples
# Configure the ID for the GDOI GM group abc as 123456.
<Sysname> system-view
[Sysname] gdoi gm group abc
[Sysname-gdoi-gm-group-abc] identity number 123456
# Configure the ID for the GDOI GM group def as 202.202.202.10.
<Sysname> system-view
[Sysname] gdoi group def
[Sysname-gdoi-gm-group-def] identity address 202.202.202.10

reset gdoi gm

Use reset gdoi gm to clear GDOI information that the GM downloaded from a KS, and trigger the
GM to re-register with the KS. The downloaded GDOI information includes the IKE SA, rekey SA,
IPsec SA, and ACL.
Syntax
reset gdoi gm [ group group-name ]
669