Ikev2, Remotegw – Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual
Page 605
592
Brocade Mobility RFS Controller CLI Reference Guide
53-1003098-01
7
Example
rfs4000-229D58(config-profile-testBrocade Mobility
RFS4000-crypto-auto-ipsec-secure)#ike-lifetime
800
rfs4000-229D58(config-profile-testBrocade Mobility
RFS4000-crypto-auto-ipsec-secure)#show context
crypto auto-ipsec-secure
ike-lifetime 800
rfs4000-229D58(config-profile-testBrocade Mobility
RFS4000-crypto-auto-ipsec-secure)#
ikev2
crypto-auto-ipsec-tunnel commands
Enables/disables the forced IKEv2 peer re-authentication
In most IPSec tunnel configurations, the lifetime of IKE SAs between peers is limited. Once the IKE
SA key expires it is renegotiated. In such a scenario, the IKEv2 tunnel peers may or may not
reauthenticate themselves. When enabled, IKE tunnel peers have to reauthenticate each time the
IKE SA is renegotiated.
Supported in the following platforms:
•
Access Points — Brocade Mobility 650 Access Point, Brocade Mobility 6511 Access Point,
Brocade Mobility 1220 Access Point, Brocade Mobility 71XX Access Point, Brocade
Mobility 1240 Access Point
•
Wireless Controllers — Brocade Mobility RFS4000, Brocade Mobility RFS6000, Brocade
Mobility RFS7000
•
Service Platforms — Brocade Mobility RFS9510
Syntax:
ikev2 peer reauth
Parameters
ikev2 peer reauth
Example
rfs4000-229D58(config-profile-testBrocade Mobility
RFS4000-crypto-auto-ipsec-secure)#ikev2 peer reauth
remotegw
crypto-auto-ipsec-tunnel commands
Defines the IKE version used for auto IPSEC tunnel negotiation using a secure gateway
Supported in the following platforms:
•
Access Points — Brocade Mobility 650 Access Point, Brocade Mobility 6511 Access Point,
Brocade Mobility 1220 Access Point, Brocade Mobility 71XX Access Point, Brocade
Mobility 1240 Access Point
ikev2 peer reauth
Enables IKEv2 peer re-authentication. When enabled, IKE tunnel peers are forced to reauthenticate each
time the IKE key is renegotiated.