Ip crypto – ADTRAN 1000R Series User Manual

Command Reference Guide

Global Configuration Mode Command Set

61200510L1-35E

Copyright © 2005 ADTRAN

403

ip crypto

Use the ip crypto command to enable AOS VPN functionality and allow crypto maps to be added to
interfaces. Use the no form of this command to disable the VPN functionality.

Syntax Description

No subcommands.

Default Values

By default, all AOS VPN functionality is disabled.

Applicable Platforms

This command applies to the NetVanta 300, 1000R, 2000, 3000, 4000, and 5000 and Total Access 900
Series units.

Command History

Release 4.1

Command was introduced.

Functional Notes

VPN-related settings will not go into effect until you enable VPN functionality using the ip crypto
command. The AOS allows you to perform all VPN-related configuration prior to enabling ip crypto, with
the exception of assigning a crypto map to an interface. The no ip crypto command removes all crypto
maps from the interfaces. Enabling ip crypto enables the IKE server on UDP Port 500. The no form of this
command disables the IKE server on UDP Port 500.

Usage Examples

The following example enables VPN functionality:

(config)#ip crypto

Disabling the AOS security features (using the no ip crypto command) does not affect VPN
configuration settings (with the exception of the removal of all crypto maps from the
interfaces). All other configuration parameters will remain intact, and VPN functionality
will be disabled.

For VPN configuration example scripts, refer to the VPN Configuration Guide located on
the ADTRAN OS Documentation CD provided with your unit.