Release 1.0
Allowing a Peer to Negotiate a Connection with the SPD
Use the spd allow-dynamic-rsp command in IPSec Configuration mode to allow a
dynamic response from a peer to negotiate Internet Key Exchange (IKE) even though
the IPSec Security Policy Database (SPD) policy setting is other than the "APPLY"
policy setting.
Note: By default, the BSR strictly follows the configured SPD.
Displaying the Security Associations Database Configuration
The Security Associations Database (SADB) specifies cryptographic keys and
algorithms, which are used to secure data transfer for IPsec and IKE. Issue the
show ipsec sadb command to display its configuration.
Figure 7-6
Figure 7-6 Output for the show ipsec sadb Command.
526360-001-00 Rev. B
displays typical show ipsec sadb command output:
MOT#show ipsec sadb
SADB:
Initialized = false
Outbound DB
Outbound Tunnel DB
Inbound ESP DB
Inbound AH DB
Inbound Other Protocol DB
MGBI
Configuring PacketCable
7-21