Section 35.3.23, Section 35.3.24 – Westermo RedFox Series User Manual
Page 832
Westermo OS Management Guide
Version 4.17.0-0
35.3.23
Configure Initiator/Responder Setting
Syntax [no] initiator
Context
context
Usage Select whether the VPN gateway should act as initiator or responder of
this IPsec tunnel.
Use ”initiator” to make the VPN gateway act as initiator, and ”no initiator”
to make it act as responder.
Use ”show initiator” to show whether the VPN gateway acts as Initiator
or Responder for this tunnel.
Default values Responder (”no initiator”)
35.3.24
Configure Dead Peer Detection Action
Syntax [no] dpd-action <clear|hold|restart>
Context
context
Usage Set the DPD action for this VPN gateway. The DPD action defines how the
VPN gateway should react when the peer is determined to be unreachable
(i.e., ”dead”).
Use ”no dpd-action” to disable the DPD mechanism on this VPN gateway.
When disabled, this VPN gateway will not probe the peer to check if it is
down, however, this VPN gateway will still respond to DPD probing messages
from the peer. That is, it is possible for the peer to the DPD mechanism
successfully even though DPD is disabled on this side.
Use ”show dpd-action” to show the configured DPD action setting. ”off”
is shown if DPD has been disabled on this VPN gateway.
For more information on DPD action settings, see
Default values This depends on the role of this VPN gateway.
❼ Initiator: If this VPN gateway is the initiator of the tunnel, the DPD action
is by default set to restart (”dpd-action restart”)
❼ Responder: If this VPN gateway is the initiator of the tunnel, the DPD
action is by default set to clear (”dpd-action clear”)
832
➞ 2015 Westermo Teleindustri AB