Section 35.3.11, Section 35.3.12 – Westermo RedFox Series User Manual
Page 826
Westermo OS Management Guide
Version 4.17.0-0
Usage Select Pre-shared secret or Certificate based IKE authentication. Use
”method psk” to use pre-shared secret authentication (default), or ”method
cert” to use certificates for IKE authentication.
”no method” will return to default setting ”method psk”.
Use ”show method” to show whether IKE authentication is configured to use
PSK or certificate.
Default values Pre-shared Secret (method psk)
35.3.11
Configure IPsec Pre-shared Secret
Syntax [no] secret <PASSWORD>
Context
context (Only valid when ”method psk” is set.)
Usage Set pre-shared key (shared secret). The password string should consist
of at least 8 characters and at most 63 characters.
Valid characters are ASCII characters 33-126, except ’#’ (ASCII 35).
Use ”no secret” to remove a configured pre-shared secret.
Use ”show secret” to show the configured pre-shared secret (PSK) for this
tunnel.
Default values Empty
35.3.12
Select Local Certificate
Syntax [no] local-cert <LABEL>
Context
context (Only valid when ”method cert” is set.)
Usage Select local certificate (and associated private key), i.e., the certificate
by which this unit will authenticate itself. The ”LABEL” is the reference of
the certificate when imported to the WeOS unit.
This setting is required when ”method cert” is set.
Use ”no local-cert” to remove the selection of local certificate.
Use ”show local-cert” to show the local certificate setting.
Default values Disabled
826
➞ 2015 Westermo Teleindustri AB