Table of Contents
Advertisement
JunosE 11.3.x Command Reference Guide A to M
ipsec crl
Syntax
Release Information
Description
Options
Mode
992
ipsec crl { ignored | optional | required }
no ipsec crl
Command introduced before JunosE Release 7.1.0.
Controls how the router checks certificate revocation lists (CRLs) when determining
whether to accept a peer's certificates. The no version restores the default setting.
NOTE: This command is replacing the ike crl command. The ike crl command
may be removed completely in a future release.
ignored—Specifies that the router will not try to find or use CRLs
optional—Specifies that the router will try to find a CRL. If a CRL is found, the peer
certificate must not appear in the CRL. If no CRL is found, the peer can still authenticate;
this is the default.
required—Specifies that the router must find a valid CRL; the CRL must be current, and
the peer certificate must not appear in the CRL
Global Configuration
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
Need help?
Do you have a question about the JUNOSE SOFTWARE FOR E SERIES 11.3.X - COMMAND REFERENCE A TO M 2010-10-19 and is the answer not in the manual?
Questions and answers