Show rip peers, Ipsec commands, Add ipsec – Perle Systems IOLAN CSS User Manual

IPsec Commands

112

IOLAN SDS/SCS/STS CLI Reference Guide, Version 3.6

Show RIP Peers

IPsec Commands

Once there is an active VPN tunnel, the IOLAN expects all connections to be established through a
VPN tunnel. To allows hosts to connect outside of the VPN tunnel, you must configure VPN
exceptions, see

VPN Exceptions on page 119

for the command syntax.

Add IPsec

Set IPsec

Description Shows current information about IPv4 or IPv6 RIP peers.
User Level Normal, Admin
Syntax

show rip peers [ipv6]

Description Adds an IPsec tunnel.
User Level Admin
Syntax

add ipsec <tunnel_name>

Option

<tunnel_name>

The name of an IPsec VPN tunnel. You can configure up to 64 VPN tunnels.

Description Configures the IPsec tunnel.
User Level Admin
Syntax

set ipsec <config_tunnel_name>

[

authentication-method shared-secret|rsa-signature|x.509-certificate

]

[boot-action start|add|ignore] [local-device left|right]

[

local-external-ip-address <IPv4/IPv6_address/FQDN>

]

[local-host-network

<IPv4_addr> <subnet_mask>|

<IPv6_address> <prefix_bits>

]

[local-ip-address <

IPv4/IPv6

_address/FQDN>]

[local-next-hop <

IPv4/IPv6

_address>]

[

remote-external-ip-address <IPv4/IPv6_address/FQDN>

]

[remote-host-network

<IPv4_addr> <subnet_mask>|

<IPv6_address> <prefix_bits>

]

[remote-ip-address <

IPv4/IPv6

_address/FQDN>]

[remote-next-hop <

IPv4/IPv6

_address>]

[remote-validation-criteria

country <code>|state-province <text>|locality <text>

|organisation <text>|organisation-unit <text>

|common-name <text>|email <email_addr>]

set ipsec <config_tunnel_name> secret <text>

set ipsec use-nat-traversal enabled|disabled