Local-id [address | asn1-dn | fqdn, User-fqdn] <ipaddress or name – ADTRAN 1000R Series User Manual

Page 1267

Advertising
background image

Command Reference Guide

IKE Policy Command Set

61200510L1-35E

Copyright © 2005 ADTRAN

1267

local-id [address | asn1-dn | fqdn | user-fqdn] <ipaddress or name>

Use the local-id command to set the local ID for the IKE policy. This setting overrides the system local ID
setting (set in the Global Configuration mode using the crypto ike local-id address command).

Syntax Description

address <ipaddress>

Specifies a remote ID of IPv4 type.

asn1-dn <name>

Specifies an Abstract Syntax Notation Distinguished Name as the remote ID
(enter this value in LDAP format).

fqdn <name>

Specifies a fully qualified domain name (e.g., adtran.com) as the remote ID.

user-fqdn <name>

Specifies a user fully qualified domain name or email address (e.g.,
[email protected]) as the remote ID.

Default Values

By default, the local ID is not defined.

Applicable Platforms

This command applies to the NetVanta 300, 1000R, 2000, 3000, 4000, and 5000 and Total Access 900
Series units.

Command History

Release 4.1

Command was introduced.

Functional Notes

The local ID for a particular IKE policy can be set in two ways. The first (default) method is done in the
Global Configuration mode:

(config)#crypto ike local-id address

This command, which by default is executed on start-up, makes the local ID of an IKE policy equal to the
IPv4 address of the interface on which an IKE negotiation is occurring. This is particularly useful for
products that could have multiple public interfaces.

The second method is to use the IKE policy command:

(config-ike)#local-id [address | fqdn | user-fqdn] <ipaddress or fqdn>

This policy-specific command allows you to manually set the local ID for an IKE policy on a per-policy
basis. You can use both methods simultaneously in the product. Several IKE policies can be created, some
of which use the default system setting of the IPv4 address of the public interface. Others can be set to
override this system setting and manually configure a local ID specific to those policies. When a new IKE
policy is created, they default to no local-id. This allows the system local ID setting to be applied to the
policy.

Advertising
Popular Brands
Popular manuals