Table of Contents
Advertisement
Command Reference Guide
crypto map <name> <number>
ike policy <value>
preshared-key <key>
no-mode-config
no-xauth
nat-t [v1 l v2] [allow l force I disable] Optional. Denotes whether peers matching this remote ID
Default Values
No default values are necessary for this command.
Command History
Release 4.1
Release 5.1
Release 7.1
Functional Notes
The fqdn and user-fqdn <fqdn> line can include wildcard characters. The wildcard characters are "*" for a
0 or more character match and "?" for a single character match. Currently, the "?" cannot be set up using
the command line interface (CLI), but it can be transferred to the unit via the startup-config.
Example for user-fqdn:
john*@domain.com
will match:
johndoe@domain.com
johnjohn@adtran.comjohnjohn@myemail.com
john@adtran.comjohn@myemail.com
Example for fqdn:
*.domain.com
will match:
www.domain.com
ftp.domain.com
one.www.domain.com
60000CRG0-35E
Optional. Specifies the crypto map name and sequence
number this remote ID corresponds to.
Optional. Specifies the Internet key exchange (IKE) policy
sequence number value this remote ID corresponds to.
Optional. Associates a preshared key with this remote ID.
Optional. Specifies that the peer matching this remote ID
should not use mode config.
Optional. Specifies that the peer matching this remote ID
should not use Xauth.
should allow, disable, or force network address translation
(NAT) traversal versions 1 or 2.
Command was introduced.
Command was expanded to include the any, asn1-dn, and no-xauth
subcommands.
Command was expanded to include the NAT traversal commands.
Copyright © 2012 ADTRAN, Inc.
Global Configuration Mode Command Set
925
- Quick Links:
- Basic Mode Command Set
Hide quick links:
Advertisement
Table of Contents
