Sa Duration - H3C MSR 20-20 Command Reference Manual
Msr 20/30/50 series routers
Hide thumbs
Also See for MSR 20-20:
- Installation manual (73 pages) ,
- User manual (60 pages) ,
- Supplementary manual (6 pages)
Table of Contents
Advertisement
View
Parameter
Description
Related command:
Example
sa duration
Syntax
View
Parameter
Description
User view
connection-id: Connection ID of the IPSec tunnel to be cleared, in the range 1 to
2000000000.
Use the
command to clear the IPSec tunnel set up by IKE.
reset ike sa
Note that:
If connection-id is not specified, all the SAs set up in phase 1 will be cleared.
■
When clearing the local IPSec tunnel, if there is an ISAKMP SA of phase 1, a
■
Delete Message will be sent to the remote end under the protection of this
IPSec tunnel to notify the remote end of deleting the corresponding SA.
If ISAKMP SAs of phase 1 are cleared first, the remote end cannot be notified
■
to clear the corresponding SAs when you clear the SAs of phase 2.
display ike sa.
# Clear the IPSec tunnel to 202.38.0.2.
<Sysname> display ike sa
conn-id
remote
1
202.38.0.2
2
202.38.0.2
flag meaning:
RD--READY ST--STAYALIVE RL--REPLACED FD-FADING TO--TIMEOUT
<Sysname> reset ike sa 2
<Sysname> display ike sa
conn-id
remote
1
202.38.0.2
flag meaning:
RD--READY ST--STAYALIVE RL--REPLACED FD-FADING TO-TIMEOUT
sa duration seconds
undo sa duration
IKE proposal view
Seconds: Specifies the ISAKMP SA lifetime in seconds, in the range 60 to 604800.
Use the
sa duration
command to specify the ISAKMP SA lifetime for an IKE
proposal.
Use the
undo sa duration
By default, the ISAKMP SA lifetime is 86,400 seconds.
flag
phase
RD|ST
1
RD|ST
2
flag
phase
RD|ST
1
command to restore the default.
2171
doi
IPSEC
IPSEC
doi
IPSEC
Advertisement
Chapters
Table of Contents
