Motorola RFS Series Reference Manual page 489
Wireless lan switches wing cli reference guide
Hide thumbs
Also See for RFS Series:
- Reference manual (948 pages) ,
- System reference manual (590 pages) ,
- Reference manual (506 pages)
Table of Contents
Advertisement
mode [aggressive|main]
peer
[ipaddress|
<host name>]
pfs [1|2|5]
remote-type [ipsec-l2tp|
xauth]
Sets the mode of the tunnels for this Crypto Map
• aggressive – Initiates aggressive mode
• main – Initiates main mode
Sets the IP address of the peer device. This can be set for
multiple remote peers. The remote peer can be either an IP
address.
Note: In manual mode, only one remote peer can be added
for a crypto map
• IP address – Enter the IP address of the peer device. If
not configured, it implies responder only to any peer
• <host name> – Displays host name of the peer
Use the set pfs command to choose the type of perfect
forward secrecy (if any) required during IPSec negotiation of
SAs for this crypto map. Use the no form of this command
to require no PFS.
• group 1 – IPSec is required to use the Diffie-Hellman
Group 1 (768-bit modulus) exchange during IPSec SA key
generation
• group 2 – IPSec is required to use the Diffie-Hellman
Group 2 (1024-bit modulus) exchange during IPSec SA
key generation
• group 5 – IPSec is required to use Diffie-Hellman Group 5
Sets the remote VPN client type
• ipsec-l2tp – Specify the remote VPN client as using
IPSEC/L2TP
• xauth – Specify the remote VPN client as using XAUTH
with mode config
Crypto-map Instance
10-13
Hide quick links:
Advertisement
Table of Contents
