Section 35.3.18 – Westermo RedFox Series User Manual
Page 829
Westermo OS Management Guide
Version 4.17.0-0
If ”no local-id” is selected for PSK authentication, the local-id will be of
type ”inet” (IPv4 address), using the IP address of the Outbound inter-
face (see
) as identity. For certificate authentication, ”no
local-id” implies a local-id of type Distinguished Name, using the subject
string of the local certificate as identity.
Use ”show local-id” to show the configured local identifier for this tunnel,
i.e., both the local-id type and the local-id value. ”Auto” is shown if the local
identifier is assigned as type ”inet” with the IP address of the outbound
interface as value.
Default values Auto (”no local-id”)
35.3.18
Configure Remote Identifier
Syntax [no] local-id <inet <IPADDR|DOMAIN> | name <DOMAIN|USER> |
email <USER@DOMAIN> | key <ID> | dn <DNSTRING>>
Context
context
Usage Set the identifier (type and value) for the peer VPN gateway. The remote-
id is used by the peer VPN gateway during the IKE handshake. Typically the
”name” type with a simple ID text string (e.g., ”bob”) can be used to identify
the peer VPN gateway.
For more details on available identification types and ID values, see
If ”no remote-id” is selected for PSK authentication, the ”remote-id” will
be of type ”inet” (IPv4 address), using the IP address from the configured
Peer (see
) as identity. A peer domain name will be resolved
to an IP address.
For certificate authentication, Auto is discouraged for the Peer ID, see
for details.
Use ”show remote-id” to show the configured remote identifier for this
tunnel, i.e., both the remote-id type and the remote-id value. ”Auto” is
shown if the local identifier is assigned as type ”inet” with the IP address
of the peer as value.
Default values Auto (”no remote-id”)
➞ 2015 Westermo Teleindustri AB
829