Set Mode - Cisco Firepower 4100 Command Reference Manual
Fully integrated next-generation firewall
Hide thumbs
Also See for Firepower 4100:
- Hardware installation manual (82 pages) ,
- Manual (42 pages) ,
- Maintenance and upgrade manual (20 pages)
Table of Contents
Advertisement
S Commands
set mode
To specify the IPSec connection mode, use the set mode command.
set mode {transport|tunnel}
Syntax Description
transport
tunnel
Connection mode
Command Modes
Command History
Release
1.1(1)
In transport mode, only the payload of an IP packet is encrypted; in tunnel mode, the entire packet is encrypted.
Usage Guidelines
Transport mode is generally used for end-to-end sessions, and tunnel mode is used for all other types of
connections (for example, between gateways).
Example
This example shows how to set the IPSec connection mode to tunnel:
FP9300-A # scope security
FP9300-A /security # scope ipsec
FP9300-A /security/ipsec # enter connection testconn
FP9300-A /security/ipsec/connection # set mode tunnel
FP9300-A /security/ipsec/connection* # commit-buffer
FP9300-A /security/ipsec/connection #
Command
create connection
set local-addr
set remote-addr
Sets the connection mode to transport.
Sets the connection mode to tunnel.
Modification
Command added.
Description
Creates a new IPSec connection.
Sets the local IP address for an IPSec connection.
Sets the remote IP address for an IPSec connection.
Cisco Firepower 4100/9300 FXOS Command Reference
set mode
201
- Quick Links:
- Cli Overview
Hide quick links:
Advertisement
Table of Contents
