Adaptec iSA1500 User Guide - Page 175

Using CLI dynamic name id id psk | rsa | x509 policy_parameters Create a dynamic connection referred to by name. The connection is defined by the id value of the remote end. An ID can be an ip_numb, or any string, which is normally the remote host's name. Strictly, it should be preceded by an '@' although this will be added if it is not supplied. No attempt is made to resolve the IP address if an ip_numb is not supplied. host name ip_host [id id] psk | rsa | x509 policy_parameters Create a host connection referred to by name. The connection is defined by the remote end-point given by the ip_host parameter. This must be accessible from this unit. If the optional id parameter is omitted, its value is taken to be the IP number of the remote host. network name ip_host ip_mask [id id] psk | rsa | x509 policy_parameters Create a network connection referred to by name. The connection is defined by the remote end-point given by the ip_host parameter plus the remote subnet behind it defined by the ip_mask parameter. The end-point must be accessible from the unit but the remote subnet need only be accessible from the end-point. Typically the end-point is a public IP address and the subnet is a set of private (or nonroutable) IP addresses. opportunistic [rsa] rsa_parameters Create an opportunistic connection. It may only take an RSA policy so the rsa switch is optional. The unit may only have a single opportunistic connection so this command will overwrite any existing opportunistic connection. ipsec key commands These commands manipulate the IPSec keys for this unit. These commands are available after the ipsec key command. They can also be run as global commands by preceding them by ipsec key or by preceding them with key from the ipsec context. 8-36