Motorola WS2000 - Wireless Switch - Network Management Device Cli Reference Manual page 188
Wireless switch
Hide thumbs
Also See for WS2000 - Wireless Switch - Network Management Device:
- System reference manual (680 pages) ,
- Configuration manual (19 pages) ,
- Specification sheet (4 pages)
Table of Contents
Advertisement
3-152 WS2000 Wireless Switch System Reference Guide
authkey <name>
<direction> <authkey>
enctype <name>
<enctype>
encalgo <name>
<encalgo>
espauthalgo <name>
<espauthalgo>
enckey <name>
<direction> <enckey>
espauthkey <name>
<direction>
<espauthkey>
spi <name> <algo>
<direction> <spi>
localgw <name> <ip> Sets the Local WAN IP to <ip> (a.b.c.d) for a SPI <name>
usepfs <name>
<usepfs>
salife <name> <life
time>
ipsecdel <name>
<mode>
auto-initiation <name>
<mode>
auto-initiate-interval
<time>
Example
admin(network.wan.vpn)>list Bob
-------------------------------------------------------------------------
Detail listing of VPN entry:
------------------------------------------------------------------------
Name
Local Subnet
Sets the AH authentication key (if SPD type is Manual) for tunnel <name>
characters) with the direction <direction> set to
authentication key set to <authkey>. (The key size is 32 hex characters for MD5,
and 40 hex characters for SHA1).
Sets the Encryption type for SPD <name>
of None, ESP, or ESP-AUTH).
Sets the Encryption Algorithm for SPD <name>
(one of DES, 3DES, AES128, AES192, or AES256).
Sets ESP Authentication Algorithm for SPD <name> to <espauthalgo> (one of
MD5
or SHA1).
Sets the Manual Encryption Key in ASCII for SPD <name> and direction
<direction>
(IN
or
OUT)
to the key <enckey>. The size of the key depends on
the encryption algorithm.
- 16 hex chars for DES
- 48 hex chars for 3DES
- 32 hex chars for AES128
- 48 hex chars for AES192
- 64 hex chars for AES256
Sets Manual ESP Authentication Key for SPD <name>
for direction <direction>
characters. If authalgo is set to MD5, the provide 32 hex characters. If authalgo is
set to SHA1, provide 40 hex characters.
Sets the direction <direction> (IN(bound) or OUT(bound)) SPI for <algo>
(Manual Authentication) or ESP) for SPD <name>
hex value more than 0xFF).
The local WAN IP (local gateway) can be set to 0.0.0.0 for a DHCP client. Any IP
address obtained from the DHCP server is then used to initiate the VPN tunnel.
The VPN peer must set it's Remote Gateway address to 0.0.0.0 to indicate an IP
value of ANY and shall operate as a responder only.
Enables or disables Perfect Forward Secrecy for SPD <name>
Sets SA life time to <lifetime> seconds (minimum 300).
Enables the deletion of IPSEC SA when IKE SA is deleted for the tunnel named
<name>
(1
to
13
characters).
Enables / disables auto-initiation by WS2000 for the tunnel named <name>
13
characters).
Sets the time duration between two consecutive auto-initiation attempts. This
time duration is in seconds.
: Bob
: 1
IN
or OUT, and the manual
(1
to
13
characters) to <enctype> (one
(1
to
13
(IN
or
OUT)
to <espauthkey>, an ASCII string of hex
(1
(1
to
13
characters) to <encalgo>
(1
to
13
characters) either
(AUTH
to
13
characters) to <spi> (a
(1
to
13
characters).
(1
to
13
characters).
(1
to
- Quick Links:
- Common Commands
- Passwd
Hide quick links:
Advertisement
Chapters
Table of Contents
