3 managing vpn settings via the cli – Westermo RedFox Series User Manual

Page 819

Advertising
background image

Westermo OS Management Guide

Version 4.17.0-0

35.3

Managing VPN settings via the CLI

The table below shows VPN management features available via the CLI.

Command

Default

Section

Configure VPN Settings
tunnel

Section 35.3.1

[no] ipsec-nat-traversal

Disabled

Section 35.3.2

[no] ipsec-mtu-override <BYTES>

1419

Section 35.3.3

[no] ipsec <INDEX>

Section 35.3.4

[no] enable

Enabled

Section 35.3.5

[no] aggressive

Main mode

Section 35.3.6

[no] pfs

Enabled

Section 35.3.7

[no] ike crypto <3des|aes128|. . . >

Auto

Section 35.3.8

auth <md5|sha1> dh <1024|. . . >

[no] esp crypto <3des|aes128|. . . >

Auto

Section 35.3.9

auth <md5|sha1> dh <auto|. . . >

[no] method <psk|cert>

PSK

Section 35.3.10

[no] secret <PASSWORD>

Empty

Section 35.3.11

[no] local-cert <LABEL>

Disabled

Section 35.3.12

[no] remote-cert <LABEL>

Disabled

Section 35.3.13

[no] remote-ca <same|any|

Same

Section 35.3.14

dn <DNSTRING>>

[no] peer <IPADDR|FQDN>

Any

Section 35.3.15

[no] outbound <IFACE>

Auto

Section 35.3.16

[no] local-id

Auto

Section 35.3.17

<inet <IPADDR|DOMAIN>|
name <DOMAIN|USER> |
email <USER@DOMAIN> |
key <ID> | dn <DNSTRING>>

[no] remote-id

Auto

Section 35.3.18

<inet <IPADDR|DOMAIN>|
name <DOMAIN|USER> |
email <USER@DOMAIN> |
key <ID> | dn <DNSTRING>>

[no] local-subnet <SUBNET/LEN |

Auto

Section 35.3.19

SUBNET NETMASK>

Continued on next page

➞ 2015 Westermo Teleindustri AB

819

Advertising
This manual is related to the following products:
See also other documents in the category Westermo Equipment: